Configuring WAF on Filters
To configure the Web Application Firewall (WAF) on filters, perform the following steps:
To configure WAF on filtersĀ 
1. Configure a Secure Web Application object. For example:
 
/cfg/security/websec/secwa testsecwa1
    ena
    appwall ena
    mode inline
2. Associate the Secure Web Application object with the filter, and configure a proxy tunnel ID (filtset). Use a unique proxy tunnel ID for each Secure Web Application object. For example:
 
/cfg/slb/filt 1
    ena
    action allow
    ipver v4
    sip any
    smask 0.0.0.0
    dip any
    dmask 0.0.0.0
    group 1
    rport 0
    vlan any
    secwa testsecwa1
    filtset 1
3. If SSL offloading needs to be performed, configure an SSL policy and attach it to the filter. For example:
 
/cfg/slb/ssl/sslpol myssl-AW-testsecwa1 ena
/cfg/slb/filt 1/ssl
    sslpol myssl-AW-testsecwa1
4. Apply and save the configuration.