3 – Mod Security Rules
Later we will be having auto installation of Comodo and Owasp rules.
To add individual rules, you can navigate to: https://<IP Address>:8090/firewall/modSecRules
By default there is one rule defined:
SecRule ARGS "\.\./" "t:normalisePathWin,id:99999,severity:4,msg:'Drive Access' ,log,auditlog,deny"
To test the functionality of this rule add folloing to end of your URL
'?abc=../../ you should get
403 Forbidden, which means your ModSecurity installation went successfull.
You can add further rules to this file and save to apply changes.