Do you recognize a good idea when you see one? We want to hear from you!
Header Image

I suggest you ...

← UTM (Formerly ASG) Feature Requests

Ability to tune & define WAF rules

The ability to have fine-grained control over which WAF rules report & block would make it far easier to perform a gradual implementation. Custom WAF rules would allow users to use the UTM for "external patching" - mitigating known vulnerabilities when it is not possible to patch the application immediately.

This would need to be combined with the ability to report and alert on WAF blocks & triggers to be useful.

4 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Forgot password?
    Create a password
    I agree to the terms of service
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    RossRoss shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    1 comment

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Forgot password?
      Create a password
      I agree to the terms of service
      Signed in as (Sign out)
      Close
      Close
      Submitting...
      • Clayton DillardClayton Dillard commented  ·   ·  Flag as inappropriate

        I agree fully. A WAF that you cannot tune is useless. I posted a very similar suggestion a year or more ago. I cannot understand why this is not a top item for customers who need to protect web apps.

      UTM (Formerly ASG) Feature Requests: Web Server Protection

      Feedback and Knowledge Base

      (thinking…)
      © 2012 by Astaro GmbH & Co. KG - a Sophos company