RepoMirrors
/
haproxy
mirror of http://git.haproxy.org/git/haproxy.git/
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

DOC: contrib/modsecurity: Typos and fix the reject example 

Thanks to https://www.mail-archive.com/haproxy@formilux.org/msg30056.html

This patch may be backported to 1.9 and 1.8.
This commit is contained in:
Yann Cézard 2019-04-25 14:48:38 +02:00 committed by Christopher Faulet
parent 85db3212b8
commit 494ddbff47
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
contrib/modsecurity/README
View File

@ -88,15 +88,15 @@ HAProxy configuration. For example:
balance roundrobin
timeout connect 5s
timeout server 3m
server iprep1 127.0.0.1:12345
server modsec1 127.0.0.1:12345
The modsecurity action is returned in a variable called txn.modsec.code. It
contains the HTTP returned code. If the variable contains 0, the request is
clean.
tcp-request content reject if { var(txn.modsec.code) -m int gt 0 }
http-request deny if { var(txn.modsec.code) -m int gt 0 }
With this rule, all the request not clean are reected.
With this rule, all the request not clean are rejected.
Known bugs, limitations and TODO list