patterns/waf_patterns/nginx/waf_rules.conf

# Nginx WAF Rules
# Automatically generated from OWASP rules.
# Include this file inside server block

  # WAF rules
    if ($waf_block_xss) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_lfi) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_rfi) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_java) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_fixation) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_attack) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_enforcement) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_initialization) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_exceptions) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_php) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_leakages) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_generic) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_sql) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_evaluation) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_sqli) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_rce) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_iis) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_shells) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }

    if ($waf_block_correlation) {
      return 403;
      # Log the blocked request (optional)
      # access_log /var/log/nginx/waf_blocked.log;
    }
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`# Nginx WAF Rules`
			`# Automatically generated from OWASP rules.`
			`# Include this file inside server block`

			`# WAF rules`
Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_xss) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_lfi) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_rfi) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_java) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_fixation) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_attack) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_enforcement) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_initialization) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_exceptions) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_php) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_leakages) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_generic) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_sql) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_evaluation) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_sqli) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_rce) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_iis) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Mon Feb 3 00:26:12 UTC 2025] 2025-02-03 00:26:12 +00:00			`if ($waf_block_shells) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`

Update: [Sun Feb 2 00:27:06 UTC 2025] 2025-02-02 00:27:06 +00:00			`if ($waf_block_correlation) {`
feat: Generate Nginx WAF config with separate map and rule files This commit modifies the script to output two files: - waf_maps.conf (for http block) - waf_rules.conf (for server block) to avoid conflicts and provide more flexibility. This update should fix the bugged nginx rules integration on existing setups: https://github.com/fabriziosalmi/patterns/issues/8 2025-01-28 22:40:56 +01:00			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
			`}`