waf.proto

Package: envoy.config.filter.http.modsecurity.v2

Types:

Source File: github.com/solo-io/gloo/projects/gloo/api/external/envoy/waf/waf.proto

ModSecurity

"disabled": bool
"ruleSets": []envoy.config.filter.http.modsecurity.v2.RuleSet
Field Type Description Default
disabled bool Disable all rules on the current route
ruleSets []envoy.config.filter.http.modsecurity.v2.RuleSet Global rule sets for the current http connection manager

RuleSet

String options are not recommended unless they are relatively short as they will be sent over the wire quite often.

Any files referenced by this proto should be mounted into the relevant envoy pod prior to use or the filter will fail to initialize and the configuration will be rejected

"ruleStr": string
"files": []string
Field Type Description Default
ruleStr string string of rules which are added directly
files []string array of files to include

ModSecurityPerRoute

"disabled": bool
"ruleSets": []envoy.config.filter.http.modsecurity.v2.RuleSet
Field Type Description Default
disabled bool Disable all rules on the current route
ruleSets []envoy.config.filter.http.modsecurity.v2.RuleSet Overwite the global rules on this route