Security Policies and Rules

The status icon tells you the policy status.

(Active) At least one web application uses this policy.

(Not In Use) No web applications use this policy.

Make use of built-in policy templates for Drupal, Joomla, Wordpress, and OWA. Note that templates and system policies are not modifiable. Start with a blank policy if you want to customize the settings.

Go to your Events list, identify the security event you want to allow and choose Create exception from the Quick Actions menu. Review the exception details and feel free to update or remove rule conditions. Then click OK. We'll add the exception rule to your firewall. The exception is deployed to the WAF appliances that are protecting the application where the event was detected.

Exceptions are independent of a security policy

 

You install virtual patches from the WAS interface. Go to WAS > Web Applications > Detections. Identify the detection you want to patch (vulnerability or sensitive content) and choose Install Patch from the Quick Actions menu. Review the patch details and feel free to update or remove rule conditions. Then click OK. We'll add a virtual patch rule to your firewall.

You can widen or restrict the scope of a rule by editing the rule details. Go to Security > Rules, identify the rule you want to change and choose View from the Quick Actions menu. Then click Edit in the rule details. You can provide new values for contents to be matched and clear (un-check) any condition that should no longer be applied to the rule. Type your drop-down text here.

Yes. Select the rule on the Rules tab and choose Delete from the Quick Actions menu.

Exception - When you delete an event exception rule, the event may be blocked/allowed again on your web application.

Patch - When you delete a virtual patch rule, your web application will no longer be protected by the patch and the vulnerability will be detected again by future scans if not fixed.

Want to get visibility on vulnerabilities not yet fixed but blocked by WAF? Just enable enhanced scanning capabilities for your security policy) or for web application settings within WAS.