Create WAF Policy

Distributed Cloud WAF shares the same WAF engine that is used by F5 BIG-IP WAF and F5 NGINX App Protect.

The Distributed Cloud WAF engine provides preset categories of rules to protect your web applications, provides the ability to run in a monitor or blocking mode, prevent false positives by excluding individual rules, IP addresses, or web application paths

In the next exercise you will configure a basic WAF policy

Exercise 1: Create WAF Policy

We will create a blocking WAF policy.

  1. Start in Distributed Cloud and switch to the “Web App & API Protection” context.

    It can be access either from the main Home page or via the “Select Service” menu on a Page

  2. Navigate the menu to go to “Manage”->”App Firewall”. Click on Add App Firewall.

  3. Enter the following variables:

    Variable

    Value

    Name

    blocking-app-firewall

    Enforcement Mode

    Blocking

    In this mode we have change the policy to block attacks that are included in the default policy. Later we will look at how we can customize these settings.

    ../_images/blocking-app-firewall-policy.png

  4. Click the Save and Exit button to create the policy