How to enable SiteWALL WAF for your website or Web application

1. Login to SiteWALL Management Portal.

2. Click on Configuration --> Applications

3. Click on Add Application button in the Application Management Section.

You will see the Add Application Wizard.

Step 1: Select the Application Type

Choose the type of application you want to configure. This can be an Application, Website, or API. Select the appropriate application type based on your requirements, then click Next to proceed with the configuration.

Step 2: Select the SSL Configuration

If you have already uploaded your SSL certificate, begin by clicking the Enable SSL radio button. Then, select the appropriate certificate profile from the dropdown menu. Once the correct profile is selected, click Next to proceed with the configuration.

If you do not wish to use SSL, select the No SSL option and click Next to proceed. However, please note that running applications without SSL poses a significant security risk, as data transmitted between the client and server will not be encrypted.

If you have not yet uploaded your SSL certificate, please refer to the Knowledge Base article here: How to Upload SSL Certificate in SiteWALL.

Step 3: Add Application Details

Once you have uploaded and configured the SSL certificate, proceed to Step 3 and fill in the application details:

a) Enter the Application URL.

b) Enter the Public IP address of the application. If you are using more than one ISP, enter the CNAME used for load balancing instead of the IP address.

Refer to the KB article here: How to Configure DNS Load Balancing with Dual ISP IPs.

c) Select the Operating System from the dropdown list.

d) Enter the Operating System Version.

e) Click on the Next button to proceed.

Step 4: Verify Group Email IDs for Notification

Check the email IDs linked to the selected notification group.
To add more recipients or create a new group, go to the Group Management section. For details, refer to the Knowledge Base: Creating Groups for Notifications and Reporting.

Step 5: Configuration

By default, 'Protection' mode is enabled for the WAF. Verify the configurations on this page, then click Next to proceed.

Note : Applications are normally published using the complete CNAME e.g. https://www.yourwebsite.com. Many a times the users access the application using Top Level Domain (TLD) e.g. https://yourwebsite.com (without www). If your website or applications are running (without www) then click on the toggle button to set the Alias to "ON". This will enable WAF for both the URL's (https://www.yourwebsite.com and https://yourwebsite.com).

Step 6: Enabling Security Modules

By default, all Security Modules are enabled except Webshell.

To enable Webshell protection for your application, please refer to the Knowledge Base article: How to install SiteWALL Webshell agent.

Review the notification group selected for each security module to ensure that alerts will be sent to the correct recipients. Once verified, click Finish to complete the Add Application wizard.

After clicking Finish the page will redirected to Application List where you can see the added Application with selective details.