Open Captainzalad opened 2 years ago
Hi @Captainzalad, sorry for the delay. As a matter of fact, this was a feature in the past.
If you look at https://github.com/coreruleset/modsecurity-crs-docker#notes-regarding-reverse-proxy, it should be supported. But looking at the implementation, it is clearly not supported anymore 🤔 .
Now reverse proxy is the default mode. What I can do is create a new EMBEDDED mode, that should work as you expect. Give me a couple days to work it out.
Some of the fixes I'm working will collide with my solution for this, so I'm pushing this a bit further in time.
I'm pretty sure it is possible to use the owasp/modsecurity-crs in standalone mode. This is what I did:
I have two pods (using podman instead of docker, but I'm sure that does not matter here): one with Nextcloud, the other with Friendica. Both used an nginx as web server in front of the php-fpm image.
Thanks for the comment.
I'd be keen on a standalone version too.
Hello, I am getting hard to run a quick apache/nginx webserver + waf for demonstration purposes, I would prefer to use owasp/modsecurity image as a standalone server rather than a reverse proxy, I followed the documentation for both modsecurity with and without crs, but no success. here is my issues:
after running the above command, under localhost:8080 nginx always services 50x.html rather than index.html
I've tried to map public_html directory to modify/add my own indexes
the container provides only these two files:
the GET result of localhost:8080
I've also tried different supported variants, and changed environment variables, but no success. the Apache variant serves nothing and ended up in an endless loop!
From what I understand, the images meant to be an easy implementation. am I missing something? or the images should be used only as reverse proxy?
appreciate any help regards.