Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1793 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Basic WAF setup

lara20

I am struggling to setup WAF in my test environment. I have IIS installed on one of my servers and all clients within the LAN can reach out to the page. After setting up WAF, when i try to access the webpage on my webserver from the WAN i get an Forbidden error. I have attached my setup screenshots and will appreciate if you can help me.

 

Rule 3 is the business application rule for WAF and rule 6 is the rule which prevents connections from WAN to LAN. Rule 3 is placed on top of the list so i am assuming it should take priority over rule 6. 

Thanks 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to FormerMember

    Hi Patel, thanks for the response. 

    Found out Hostname in the HTTP request (my WAN ip) does the match the server name (webserver.domain.com)

    If i had the public dns records match to the server name ( A record -my public ip pointing to webserver.domain.com) should that be ok. 

    Also wondering if the WAF requests from the WAN can be protected with an external(another) domain name instead of providing real domain name in the public url

    Eg user on wan types www.server1.domain1.com and when the request reaches XG, it translates/redirects  it to www.server1.realdomain.com. Is that possible.