Description
Web-application firewall inspection can be connected to nginx mainline through the ModSecurity v3 connector. It is useful for administrators adding rule-based request protection to web applications.
WAF rules can block legitimate traffic or miss attacks if tuned poorly. Start in detection mode, review logs, and tune policies before enforcing broadly.