Browse Source

update

main
有安科技 1 week ago
parent
commit
3cb5792c79
  1. 2
      README.md
  2. 4
      docker/docker-compose.yml
  3. 5
      docker/uuwaf.sh
  4. 2
      docs/guide/README.md
  5. 11
      docs/guide/install.md
  6. 6
      docs/guide/problems.md
  7. BIN
      docs/waf.tgz

2
README.md

@ -62,7 +62,7 @@ curl https://waf.uusec.com/waf-install -o waf-install && sudo bash ./waf-install
- 软件依赖:Docker 20.10.14 版本以上,Docker Compose 2.0.0 版本以上,低版本会导致sql数据无法导入以致南墙后台无法登录。
若遇到官方Docker Engine无法安装,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装国内版,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
若遇到无法自动安装Docker Engine,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
```bash
curl https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash ./waf/uuwaf.sh

4
docker/docker-compose.yml

@ -12,7 +12,7 @@
services:
uuwaf:
image: swr.cn-south-1.myhuaweicloud.com/uusec/nanqiang:latest
image: swr.ap-southeast-1.myhuaweicloud.com/uusec/nanqiang:latest
ulimits:
nproc: 65535
nofile:
@ -40,7 +40,7 @@ services:
condition: service_healthy
wafdb:
image: swr.cn-south-1.myhuaweicloud.com/uusec/percona-server:5.7
image: swr.ap-southeast-1.myhuaweicloud.com/uusec/percona-server:5.7
container_name: wafdb
restart: always
networks:

5
docker/uuwaf.sh

@ -48,13 +48,14 @@ uninstall_uuwaf(){
}
start_uuwaf(){
if [ $(command -v netstat) ]; then
if [ ! $(command -v netstat) ]; then
$( command -v yum || command -v apt-get ) -y install net-tools
fi
port_status=`netstat -nlt|grep -E ':(80|443|4443)\s'|wc -l`
if [ $port_status -gt 0 ]; then
echo -e "\t 端口80、443、4443中的一个或多个被占用,请关闭对应服务或修改其端口"
exit 1
fi
fi
$DC_CMD up -d
}

2
docs/guide/README.md

@ -34,7 +34,7 @@
| <img width=20/>功能项<img width=20/> |<img width=50/>社区版<img width=50/>|<img width=50/>专业版<img width=50/>|<img width=50/>商业版<img width=50/>|
| :----------: | :----------------------------------------------------------: | :----------------------------------------------------------: | :----------: |
| 价格 |免费|3099/年|按需定制|
| 价格 |免费|2999/年|按需定制|
| 站点配置 | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> |
| 漏洞防护 | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg>|
| CC防护 | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg>| <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg> | <svg width="24" height="24" viewBox="0 0 48 48" fill="none"><path d="M24 44C29.5228 44 34.5228 41.7614 38.1421 38.1421C41.7614 34.5228 44 29.5228 44 24C44 18.4772 41.7614 13.4772 38.1421 9.85786C34.5228 6.23858 29.5228 4 24 4C18.4772 4 13.4772 6.23858 9.85786 9.85786C6.23858 13.4772 4 18.4772 4 24C4 29.5228 6.23858 34.5228 9.85786 38.1421C13.4772 41.7614 18.4772 44 24 44Z" fill="#3c3" stroke="#3c3" stroke-width="4" stroke-linejoin="round"/><path d="M16 24L22 30L34 18" stroke="#FFF" stroke-width="4" stroke-linecap="round" stroke-linejoin="round"/></svg>|

11
docs/guide/install.md

@ -9,8 +9,7 @@
```
- 处理器:64位 1千兆赫(GHz)或更快。
- 内存:不小于2G
- 磁盘空间:不小于16G
- 系统:RHEL 7及以上兼容x86_64系统,如CentOS、Rocky Linux、AlmaLinux、Alibaba Cloud Linux、TencentOS等。
- 磁盘空间:不小于8G
```
@ -21,6 +20,8 @@
主机版安装方式如下:
系统要求:RHEL 7及以上兼容x86_64系统,如CentOS、Rocky Linux、AlmaLinux、Alibaba Cloud Linux、TencentOS等。
```bash
sudo yum install -y ca-certificates
curl https://waf.uusec.com/waf-install -o waf-install && sudo bash ./waf-install && rm -f ./waf-install
@ -39,10 +40,10 @@ Docker版安装方式如下:
- 软件依赖:Docker 20.10.14 版本以上,Docker Compose 2.0.0 版本以上,低版本会导致sql数据无法导入以致南墙后台无法登录。
若遇到官方Docker Engine无法安装,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装国内版,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
若遇到无法自动安装Docker Engine,请参考[阿里云](https://help.aliyun.com/zh/ecs/use-cases/install-and-use-docker-on-a-linux-ecs-instance)手动安装,安装成功后参考 [https://docker.1panel.dev/](https://docker.1panel.dev/) 配置镜像加速。
```bash
curl https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash ./waf/uuwaf.sh
curl -fsSL https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash ./waf/uuwaf.sh
```
后续可直接执行 `bash ./waf/uuwaf.sh` 来管理南墙容器,包括启动、停止、更新、卸载等。
@ -54,3 +55,5 @@ curl https://waf.uusec.com/waf.tgz -o waf.tgz && tar -zxf waf.tgz && sudo bash .
3. 添加SSL证书:进入证书管理菜单,点击添加证书按钮,上传第二步中域名的https证书和私钥文件。若不添加SSL证书,则南墙会自动尝试申请Let's Encrypt免费SSL证书,并在证书到期前自动续期。
4. 修改域名DNS指向:到域名服务商管理后台把域名DNS A记录的ip地址改为南墙服务器ip地址。
5. 测试连通性:访问站点域名查看网站是否能够打开,查看返回的http header头server字段是否为uuWAF。
!> 更多使用过程中碰到问题的解决办法请参考[常见问题](https://waf.uusec.com/#/guide/problems)。

6
docs/guide/problems.md

@ -38,3 +38,9 @@ firewall-cmd --permanent --zone=internal --change-interface=wafnet
### 🍍 如何修改南墙管理后台的端口和SSL证书? <!-- {docsify-ignore} -->
?> 南墙管理后台的配置位于/uuwaf/web/conf/conf.yaml中,addr字段值即为ip地址和端口。替换SSL证书可以替换/uuwaf/web/conf/目录中的server.crt和server.key文件,之后执行systemctl restart uuwaf重启服务使配置生效。
### 🍈 如何修改南墙反向代理默认监听端口? <!-- {docsify-ignore} -->
?> 南墙默认只监听http 80、https 443端口,用户可自行在/uuwaf/conf/uuwaf.conf中自定义任意监听端口,配置方式请参考nginx 的 [listen](https://nginx.org/en/docs/http/ngx_http_core_module.html#listen) 设置,之后执行systemctl restart uuwaf重启服务使配置生效。Docker版用户可以修改docker-compose.yml中的port端口映射。

BIN
docs/waf.tgz

Binary file not shown.
Loading…
Cancel
Save