github
/
uuWAF
mirror of https://github.com/Safe3/uuWAF
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

update

pull/104/head
有安科技 2024-11-12 11:50:25 +08:00
parent 86a935cc19
commit 3cb5792c79
7 changed files with 25 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -62,7 +62,7 @@ curl https://waf.uusec.com/waf-install -o waf-install && sudo bash ./waf-install
- 软件依赖Docker 20.10.14 版本以上Docker Compose 2.0.0 版本以上低版本会导致sql数据无法导入以致南墙后台无法登录。
若遇到官方Docker Engine无法安装,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装国内版,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
若遇到无法自动安装Docker Engine,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
```bash
curl https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash ./waf/uuwaf.sh

4
docker/docker-compose.yml
View File

@ -12,7 +12,7 @@
services:
uuwaf:
image: swr.cn-south-1.myhuaweicloud.com/uusec/nanqiang:latest
image: swr.ap-southeast-1.myhuaweicloud.com/uusec/nanqiang:latest
ulimits:
nproc: 65535
nofile:
@ -40,7 +40,7 @@ services:
condition: service_healthy
wafdb:
image: swr.cn-south-1.myhuaweicloud.com/uusec/percona-server:5.7
image: swr.ap-southeast-1.myhuaweicloud.com/uusec/percona-server:5.7
container_name: wafdb
restart: always
networks:

13
docker/uuwaf.sh
View File

@ -48,12 +48,13 @@ uninstall_uuwaf(){
}
start_uuwaf(){
if [ $(command -v netstat) ]; then
port_status=`netstat -nlt|grep -E ':(80|443|4443)\s'|wc -l`
if [ $port_status -gt 0 ]; then
echo -e "\t 端口80、443、4443中的一个或多个被占用请关闭对应服务或修改其端口"
exit 1
fi
if [ ! $(command -v netstat) ]; then
$( command -v yum || command -v apt-get ) -y install net-tools
fi
port_status=`netstat -nlt|grep -E ':(80|443|4443)\s'|wc -l`
if [ $port_status -gt 0 ]; then
echo -e "\t 端口80、443、4443中的一个或多个被占用请关闭对应服务或修改其端口"
exit 1
fi
$DC_CMD up -d
}

2
docs/guide/README.md
View File

@ -34,7 +34,7 @@
| <img width=20/>功能项<img width=20/> |<img width=50/>社区版<img width=50/>|<img width=50/>专业版<img width=50/>|<img width=50/>商业版<img width=50/>|
| :----------: | :----------------------------------------------------------: | :----------------------------------------------------------: | :----------: |
| 价格 |免费|3099/年|按需定制|
| 价格 |免费|2999/年|按需定制|
| 站点配置 | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> |
| 漏洞防护 | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg>|
| CC防护 | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg>| <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg>|

13
docs/guide/install.md
View File

@ -9,8 +9,7 @@
```
- 处理器64位 1千兆赫(GHz)或更快。
- 内存不小于2G
- 磁盘空间不小于16G
- 系统RHEL 7及以上兼容x86_64系统如CentOS、Rocky Linux、AlmaLinux、Alibaba Cloud Linux、TencentOS等。
- 磁盘空间不小于8G
```
@ -21,6 +20,8 @@
主机版安装方式如下:
系统要求RHEL 7及以上兼容x86_64系统如CentOS、Rocky Linux、AlmaLinux、Alibaba Cloud Linux、TencentOS等。
```bash
sudo yum install -y ca-certificates
curl https://waf.uusec.com/waf-install -o waf-install && sudo bash ./waf-install && rm -f ./waf-install
@ -39,10 +40,10 @@ Docker版安装方式如下
- 软件依赖Docker 20.10.14 版本以上Docker Compose 2.0.0 版本以上低版本会导致sql数据无法导入以致南墙后台无法登录。
若遇到官方Docker Engine无法安装,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装国内版,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
若遇到无法自动安装Docker Engine,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
```bash
curl https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash ./waf/uuwaf.sh
curl -fsSL https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash ./waf/uuwaf.sh
```
后续可直接执行 `bash ./waf/uuwaf.sh` 来管理南墙容器,包括启动、停止、更新、卸载等。
@ -53,4 +54,6 @@ curl https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash .
2. 添加站点进入站点管理菜单点击添加站点按钮按提示添加站点域名与网站服务器ip。
3. 添加SSL证书进入证书管理菜单点击添加证书按钮上传第二步中域名的https证书和私钥文件。若不添加SSL证书则南墙会自动尝试申请Let's Encrypt免费SSL证书并在证书到期前自动续期。
4. 修改域名DNS指向到域名服务商管理后台把域名DNS A记录的ip地址改为南墙服务器ip地址。
5. 测试连通性访问站点域名查看网站是否能够打开查看返回的http header头server字段是否为uuWAF。
5. 测试连通性访问站点域名查看网站是否能够打开查看返回的http header头server字段是否为uuWAF。
!> 更多使用过程中碰到问题的解决办法请参考[常见问题](https://waf.uusec.com/#/guide/problems)。

6
docs/guide/problems.md
View File

@ -38,3 +38,9 @@ firewall-cmd --permanent --zone=internal --change-interface=wafnet
### 🍍 如何修改南墙管理后台的端口和SSL证书 <!-- {docsify-ignore} -->
?> 南墙管理后台的配置位于/uuwaf/web/conf/conf.yaml中addr字段值即为ip地址和端口。替换SSL证书可以替换/uuwaf/web/conf/目录中的server.crt和server.key文件之后执行systemctl restart uuwaf重启服务使配置生效。
### 🍈 如何修改南墙反向代理默认监听端口? <!-- {docsify-ignore} -->
?> 南墙默认只监听http 80、https 443端口用户可自行在/uuwaf/conf/uuwaf.conf中自定义任意监听端口配置方式请参考nginx 的 [listen](https://nginx.org/en/docs/http/ngx_http_core_module.html#listen) 设置之后执行systemctl restart uuwaf重启服务使配置生效。Docker版用户可以修改docker-compose.yml中的port端口映射。

BIN
docs/waf.tgz
View File

Binary file not shown.