Hi,

i'm not able to find the option to configure SSL with WAF; i can see only HTTP and no HTTPS , how can i configure and all the WAF to scan the HTTPS traffic for the web server ?

Thank you,

By solving this question, you may help 806 user(s).

Posting a reply earns you 2 coins. An accepted reply earns you 20 coins and another 10 coins for replying within 10 minutes. (Expired) What is Coin?

Enter your mobile phone number and company name for better service. Go

faysalji Lv3Posted 18 Apr 2023 18:12
  
To configure SSL with a Web Application Firewall (WAF), you need to make sure that your WAF is capable of handling HTTPS traffic. If your WAF is only showing HTTP as an option, it's possible that the WAF is not configured correctly, or it may not support SSL traffic.

Assuming that your WAF does support SSL traffic, here are some steps you can take to configure SSL with your WAF:

Configure your web server to use HTTPS: Before you can configure SSL with your WAF, you need to make sure that your web server is configured to use HTTPS. You will need to obtain an SSL/TLS certificate and configure your web server to use it.

Configure your WAF to handle HTTPS traffic: Once your web server is configured to use HTTPS, you need to configure your WAF to handle HTTPS traffic. This typically involves configuring the WAF to listen for HTTPS traffic on a specific port, such as port 443.

Enable SSL/TLS inspection: To scan HTTPS traffic, your WAF needs to be able to decrypt the traffic, inspect it for threats, and then re-encrypt it before sending it to the web server. This process is known as SSL/TLS inspection. You will need to configure your WAF to perform SSL/TLS inspection for HTTPS traffic.

Test your configuration: Once you have configured your WAF to handle HTTPS traffic and enabled SSL/TLS inspection, you should test your configuration to ensure that everything is working correctly. You can do this by sending HTTPS traffic to your web server and verifying that the WAF is scanning the traffic and blocking any malicious requests.

Keep in mind that SSL/TLS inspection can introduce performance overhead, so you should monitor the performance of your WAF to ensure that it is not impacting the performance of your web server.
BitCloud Lv3Posted 18 Apr 2023 11:24
  
Enter the required SSL certificate information, such as the certificate authority (CA) information, domain name, and other relevant details.
isabelita Lv3Posted 18 Apr 2023 11:16
  
Enable the "SSL decryption" option to allow the WAF to decrypt and scan the HTTPS traffic
Adonis001 Lv3Posted 18 Apr 2023 11:13
  
I think you need the assistance of support team
MISMIS Lv3Posted 18 Apr 2023 11:03
  
It is the same as HTTP
Naomi Posted 18 Apr 2023 10:56
  
Go to the WAF configuration page.
Select the "SSL" tab.
Farina Ahmed Lv5Posted 17 Apr 2023 15:11
  
Honestly I didn't find any proper document for it but as mentioned in the top most comment, follow the procedure and if it didn't work out then check out with the license you purchased for WAF and also you can open TAC case for that by contacting Sangfor TAC team. Usually it is find in policies tab.
Imran Tahir Lv4Posted 17 Apr 2023 12:10
  
it availbel in policy tabs
kmrnliaqat Lv3Posted 17 Apr 2023 11:55
  
use the policy tab for this purpose
RegiBoy Lv5Posted 17 Apr 2023 11:50
  
Go to the polices tab and you can find it there.

I Can Help:

Change

Moderator on This Board

11
7
5

Started Topics

Followers

Follow

1
3
5

Started Topics

Followers

Follow

0
4
5

Started Topics

Followers

Follow

67
20
3

Started Topics

Followers

Follow

3
14
3

Started Topics

Followers

Follow

1
137
3

Started Topics

Followers

Follow

Board Leaders