Configuring WAF on Filters
To configure the Web Application Firewall (WAF) on filters, perform the following steps:
To configure WAF on filtersĀ
1. Configure a Secure Web Application object. For example:
/cfg/security/websec/secwa testsecwa1 ena appwall ena mode inline |
2. Associate the Secure Web Application object with the filter, and configure a proxy tunnel ID (filtset). Use a unique proxy tunnel ID for each Secure Web Application object. For example:
/cfg/slb/filt 1 ena action allow ipver v4 sip any smask 0.0.0.0 dip any dmask 0.0.0.0 group 1 rport 0 vlan any secwa testsecwa1 filtset 1 |
3. If SSL offloading needs to be performed, configure an SSL policy and attach it to the filter. For example:
/cfg/slb/ssl/sslpol myssl-AW-testsecwa1 ena /cfg/slb/filt 1/ssl sslpol myssl-AW-testsecwa1 |
4. Apply and save the configuration.