Coraza plugin for HAProxy (for WAF capabilities)

Started by routerino, April 12, 2023, 11:26:18 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 12, 2023, 11:26:18 AM
Hi all, I'm setting up a tutorial for OPNsense and HAproxy, but hit a wall when I realised there's no native support for the WAF plugin: https://github.com/corazawaf/coraza-spoa.

Digging into the topic, it appears people say to use the nginx WAF plugin, but nginx is considerably less friendly and configurable compared to haproxy. Also nginx isn't using the coraza ruleset.

Anyone have an idea how to approach this? Manually or otherwise? I would suspect it would need compiling the go module for OPNsense, setting up the service, and then configuring HAproxy to use it (which ideally could get handled by the plugin itself, but even manually would be a good start).
December 11, 2023, 11:22:41 PM #1 Last Edit: December 11, 2023, 11:54:47 PM by patrick010
Did you get Coraza working? As I understand it's the replacement for modsecurity.
January 15, 2024, 12:15:37 PM #2
Following the thread, I also think this plugin integration would be cool
Print
Go Up Pages1
User actions