How to enable SiteWALL WAF for your website or Web application

How to enable SiteWALL WAF for your website or Web application

1)    Login to SiteWALL Portal, click on Settings --> WAF --> Sites and then click on Add Site button.





















2) Enter the website url and the Public IP address on which the website is published.

3) Select the Operating System between Linux and Windows using the drop down option. Enter the Operating System Version

 

4) Configure the WAF by sliding the WAF button to "YES". Mode is set to Protection by Default. Enter the HTTP Port.

5) If you website is also running on https then enable HTTP's. Enter the HTTP's port and Slide the End-To-End SSL to "YES". For HTTP's scanning to work seamlessly, you will need to upload the certificate and key. Refer to the KB for more details on how to export the certificate. 



6) Click on Select Certificate and upload the certificate. Click on Select Key and upload the Key.

7) Website are normally published using the complete CNAME e.g. https://www.sitewall.net. Many a times the users access the website using Top Level Domain (TDL) e.g. https://sitewall.net (without www). If you are running you website with TDL (without www) then slide the Alias to "YES" for enabling WAF for TDL.

8) Enable Malware Scanning and select the Email Notification Group from the drop down to receive notifications via email. Refer to the KB on creating groups for notifications.

9) Enable VA Scanning and select the Email Notification Group

10) Enable Webshell Scanning and select the Email Notification Group.



11) Enter the Website path for Webshell scanning.

12) Click on Submit to save the configuration.