Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
17.7 Legacy Series
»
WAF/IDS haproxy?
« previous
next »
Print
Pages: [
1
]
Author
Topic: WAF/IDS haproxy? (Read 3513 times)
dragon2611
Jr. Member
Posts: 94
Karma: 4
WAF/IDS haproxy?
«
on:
October 30, 2017, 02:34:06 pm »
Given Suricata tends not to play nice with virtIO nics and tends to be CPU heavy is there a way to use the HTTP/HTTPs threat rules with HAproxy instead?
Would be nice if possible as it's already acting as the front-end load balancer/proxy and decoding any incoming https
Logged
franco
Administrator
Hero Member
Posts: 13957
Karma: 1210
Re: WAF/IDS haproxy?
«
Reply #1 on:
October 30, 2017, 02:40:55 pm »
Hi dragon,
I think somebody wanted to work on an Nginx/NAXSI plugin in the upcoming months:
https://github.com/nbs-system/naxsi
Cheers,
Franco
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
17.7 Legacy Series
»
WAF/IDS haproxy?
