TWAF tweaking

imadsani · Unread post by **imadsani** » Tue Jun 23, 2015 3:03 am

I just setup TWAF along side Varnish on port 80 for a server, when I tested it myself things went fine but everything went haywire as soon as I redirected traffic to it. The pages took forever to load, when they loaded other times just an endless wait. So I removed TWAF from port 80 and everything got better.

My question, which file do I play with for TWAF's apache instance to get it to handle this traffic?

Unread post by **mikeshinn** » Tue Jun 23, 2015 9:08 am

What port did you config the TWAF to listen on?

imadsani · Unread post by **imadsani** » Wed Jun 24, 2015 1:15 am

Initially I had it set up on port 80

Unread post by **mikeshinn** » Wed Jun 24, 2015 10:57 am

Was it also configured on port 80 when you setup a proxy in front of it?

imadsani · Unread post by **imadsani** » Thu Jun 25, 2015 1:36 am

I don't follow.

The original setup had Nginx / PHP-FPM on port 8888 and Varnish & TWAF on port 80

Unread post by **mikeshinn** » Fri Jun 26, 2015 5:30 pm

Sorry if I wasnt clear, was the TWAF configured to intercept connections to port 80, and something else was configured to also listen on port 80?

imadsani · Unread post by **imadsani** » Wed Jul 01, 2015 4:11 pm

Apologies for the late reply.

TWAF and Varnish were running side by side on port 80.

Edit: Would changing settings in the tortixd.conf file at /var/asl/etc/httpd/conf help?

Unread post by **scott** » Wed Jul 01, 2015 9:16 pm

Sure, all the rules of a standard /etc/httpd/conf/httpd.conf apply there.

Atomicorp

TWAF tweaking

TWAF tweaking

Re: TWAF tweaking

Re: TWAF tweaking

Re: TWAF tweaking

Re: TWAF tweaking

Re: TWAF tweaking

Re: TWAF tweaking

Re: TWAF tweaking