NGINX ModSecurity WAF
The F5 NGINX ModSecurity web application firewall (WAF) is built on ModSecurity 3.0.
The ModSecurity WAF module was deprecated since NGINX Plus Release 29, and is no longer available since NGINX Plus Release 32
Installation
-
Check the Technical Specifications page to verify that the module is supported by your operating system.
-
Install the NGINX ModSecurity WAF module package
nginx-plus-module-modsecurity.For Amazon Linux 2, CentOS, Oracle Linux, and RHEL:
yum install nginx-plus-module-modsecurityppc64le is currently not supported for Amazon Linux, CentOS, Oracle Linux, and RHEL.For Amazon Linux 2023:
dnf install nginx-plus-module-modsecurityFor Debian and Ubuntu:
apt-get install nginx-plus-module-modsecurityaarch64 and ppc64le is currently not supported for Ubuntu.For SLES:
zypper install nginx-plus-module-modsecurityFor Alpine:
apk add nginx-plus-module-modsecurity
Configuration
After installation you will need to enable and configure the module in NGINX Plus configuration file nginx.conf.
-
Enable dynamic loading of the module with the
load_moduledirective specified in the top-level (“main”) context:load_module modules/ngx_http_modsecurity_module.so; -
Perform additional configuration as required by the module.
-
Test the configuration and reload NGINX Plus to enable the module:
nginx -t && nginx -s reload -
Configure the module.