Update config.lua
weakestan
GitHub
parent
314a2f62ec
commit
f7f2a089e6
25
config.lua
25
config.lua
|
|
@ -1,23 +1,36 @@
|
||||||
RulePath = "/usr/local/nginx/conf/waf/wafconf/"
|
RulePath = "/etc/nginx/waf/wafconf/"
|
||||||
attacklog = "on"
|
attacklog = "on"
|
||||||
logdir = "/usr/local/nginx/logs/hack/"
|
--保存日志到文件
|
||||||
|
logtofile = "off"
|
||||||
|
logdir = "/var/log/nginx/"
|
||||||
|
--保存日志到syslog,采用nginx设置
|
||||||
|
logtoserver = "on"
|
||||||
|
--通过log日志方式提交hack_ip记录到ros(失败:ros没办法将udp提交的信息加载到地址表)
|
||||||
|
loghack="off"
|
||||||
|
--rosip='192.168.199.1'
|
||||||
|
------------
|
||||||
UrlDeny="on"
|
UrlDeny="on"
|
||||||
Redirect="on"
|
Redirect="on"
|
||||||
CookieMatch="on"
|
CookieMatch="on"
|
||||||
postMatch="on"
|
postMatch="on"
|
||||||
whiteModule="on"
|
whiteModule="on"
|
||||||
black_fileExt={"php","jsp"}
|
black_fileExt={"php","jsp"}
|
||||||
ipWhitelist={"127.0.0.1"}
|
ipWhitelist={"127.0.0.1","192.168.2.1"}
|
||||||
ipBlocklist={"1.0.0.1"}
|
ipBlocklist={"1.0.0.1"}
|
||||||
CCDeny="off"
|
--违规ip登记,是否限制访问。
|
||||||
CCrate="100/60"
|
--hackrate超过10次/5秒,限制访问1800秒。
|
||||||
|
hackipdeny="on"
|
||||||
|
hackrate="10/60/1800"
|
||||||
|
--cc攻击防范
|
||||||
|
CCDeny="on"
|
||||||
|
CCrate="30/60/30"
|
||||||
html=[[
|
html=[[
|
||||||
<html xmlns="http://www.w3.org/1999/xhtml"><head>
|
<html xmlns="http://www.w3.org/1999/xhtml"><head>
|
||||||
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
|
||||||
<title>网站防火墙</title>
|
<title>网站防火墙</title>
|
||||||
<style>
|
<style>
|
||||||
p {
|
p {
|
||||||
line-height:20px;
|
line-height:20px;
|
||||||
}
|
}
|
||||||
ul{ list-style-type:none;}
|
ul{ list-style-type:none;}
|
||||||
li{ list-style-type:none;}
|
li{ list-style-type:none;}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue