Benutzer-Werkzeuge

Webseiten-Werkzeuge


coraza

Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

Link zu dieser Vergleichsansicht

Beide Seiten der vorigen Revision Vorhergehende Überarbeitung
Nächste Überarbeitung
Vorhergehende Überarbeitung
coraza [2026/02/24 11:23]
jango
coraza [2026/02/24 16:12] (aktuell)
jango
Zeile 16: Zeile 16:
 cd coraza-spoa cd coraza-spoa
  
-go run mage.go build+sudo go run mage.go build
  
 # binary is in build now # binary is in build now
Zeile 37: Zeile 37:
  
 <code> <code>
 +[root@vpsv-haproxy1 ~]# cat /etc/haproxy/coraza-spoe.cfg
 [coraza] [coraza]
 spoe-agent coraza-agent spoe-agent coraza-agent
-    messages coraza_req+    messages coraza-req
     option var-prefix coraza     option var-prefix coraza
-    timeout hello 5s +    timeout hello 2s 
-    timeout idle 30s +    timeout idle 10s 
-    timeout processing 30s+    timeout processing 5s
     use-backend coraza-spoa-backend     use-backend coraza-spoa-backend
  
-spoe-message coraza_req +spoe-message coraza-req 
-    args app=str("sample_app") src_ip=src method=method path=path query=query version=req.ver+    args app=str(sample_app) id=unique-id src_ip=src src_port=src_port dst_ip=dst dst_port=dst_port method=method path=path query=query version=req.ver headers=req.hdrs
     event on-frontend-http-request     event on-frontend-http-request
 +[root@vpsv-haproxy1 ~]#
 </code> </code>
  
Zeile 71: Zeile 73:
       Include @coraza.conf-recommended       Include @coraza.conf-recommended
       Include @crs-setup.conf.example       Include @crs-setup.conf.example
 +      
 +      SecRule REQUEST_FILENAME "@streq /Microsoft-Server-ActiveSync" "id:1001001,phase:1,pass,nolog,ctl:ruleRemoveById=920420"
 +      
       Include @owasp_crs/*.conf       Include @owasp_crs/*.conf
  
Zeile 115: Zeile 120:
  
 root@ubuntuserver:~# root@ubuntuserver:~#
 +</code>
 +
 +<code>
 +backend coraza-spoa-backend
 +    mode tcp
 +    timeout connect 5s
 +    timeout server  30s
 +    server coraza1 172.21.1.170:9000
 +    
 +frontend outlook
 +        bind 172.21.1.169:443 ssl crt /etc/ssl/private/wildcard_chain.pem
 +        mode http
 +        log global
 +        log-format "[outlook] %ci:%cp fe=\"%f\" be=\"%b/%s\" bytes=%B"
 +        filter spoe engine coraza config /etc/haproxy/coraza-spoe.cfg
 +        http-response set-header X-Coraza-Action %[var(txn.coraza.action)] if { var(txn.coraza.action) -m found }
 +        default_backend outlook
 </code> </code>
coraza.1771928612.txt.gz · Zuletzt geändert: 2026/02/24 11:23 von jango