Hi all,
I am trying to figure how to whitelist uploading files to nextcloud. I found a tool that reads out logs and outputs whitelisting rules for NAXSI. I tried to translate these into opnsense, but they are not working.
These are the suggested rules that I have to whitelist:
########### Optimized Rules Suggestion ##################
# total_count:1206 (99.1%), peer_count:1 (100.0%) | ?
BasicRule wl:2 "mz:BODY";
# total_count:11 (0.9%), peer_count:1 (100.0%) | ?
#exemple (from exlog) : '/'
BasicRule wl:1206 "mz:$URL:/ocs/v2.php/apps/files_sharing/api/v1/shares|$ARGS_VAR:path";
You can find my config on the attached screenshots.
Hello W0nderW0lf,
I'm struggling with the same issue now. I'm unable to enable NAXSI on nginx reverse proxy, because of id=2 false positives. Did you found a solution for it in the meantime?