Later we will be having auto installation of Comodo and Owasp rules.

To add individual rules, you can navigate to: https://<IP Address>:8090/firewall/modSecRules

By default there is one rule defined:

SecRule ARGS "../" "t:normalisePathWin,id:99999,severity:4,msg:'Drive Access' ,log,auditlog,deny"

To test the functionality of this rule add folloing to end of your URL '?abc=../../ you should get 403 Forbidden, which means your ModSecurity installation went successfull.

You can add further rules to this file and save to apply changes.