Navigation :
Getting Started
What is Gloo Edge?
Setup
Guides
Operations
Reference
-
API Reference
-- address.proto
-- als.proto
-- annotations.proto
-- any.proto
-- artifact.proto
-- aws.proto
-- aws_ec2.proto
-- azure.proto
-- backoff.proto
-- base.proto
-- base.proto
-- buffer.proto
-- circuit_breaker.proto
-- cluster.proto
-- connection.proto
-- consul.proto
-- core.proto
-- cors.proto
-- custom_tag.proto
-- deprecation.proto
-- descriptor.proto
-- discovery.proto
-- dlp.proto
-- duration.proto
-- empty.proto
-- endpoint.proto
-- envoy.glooe.solo.io.project
-- event_service_config.proto
-- ext.proto
-- extauth.proto
-- extension.proto
-- extensions.proto
-- failover.proto
-- fault.proto
-- filter.proto
-- gateway.proto
-- gateway.solo.io.project
-- gloo.solo.io.project
-- glooe.solo.io.project
-- gogo.proto
-- grpc.proto
-- grpc_json.proto
-- grpc_service.proto
-- grpc_web.proto
-- gzip.proto
-- hcm.proto
-- headers.proto
-- health_check.proto
-- health_check.proto
-- healthcheck.proto
-- http.proto
-- http.proto
-- http_path.proto
-- http_uri.proto
-- http_uri.proto
-- ingress.proto
-- jwt.proto
-- kubernetes.proto
-- lbhash.proto
-- load_balancer.proto
-- matchers.proto
-- metadata.proto
-- metadata.proto
-- metrics.proto
-- migrate.proto
-- options.proto
-- outlier_detection.proto
-- parameters.proto
-- percent.proto
-- percent.proto
-- pipe.proto
-- protocol_upgrade.proto
-- proxy.proto
-- proxy_protocol.proto
-- proxy_validation.proto
-- proxylatency.proto
-- range.proto
-- range.proto
-- ratelimit.proto
-- ratelimit.proto
-- ratelimit.proto
-- rbac.proto
-- ref.proto
-- regex.proto
-- rest.proto
-- retries.proto
-- route.proto
-- route_components.proto
-- route_table.proto
-- sanitize.proto
-- secret.proto
-- semantic_version.proto
-- sensitive.proto
-- service.proto
-- service_spec.proto
-- settings.proto
-- shadowing.proto
-- socket_option.proto
-- solo-kit.proto
-- solo_jwt_authn.proto
-- ssl.proto
-- static.proto
-- stats.proto
-- status.proto
-- status.proto
-- status.proto
-- string.proto
-- struct.proto
-- subset.proto
-- subset_spec.proto
-- tcp.proto
-- timestamp.proto
-- trace.proto
-- tracing.proto
-- transformation.proto
-- transformation.proto
-- transformation.proto
-- upstream.proto
-- version.proto
-- versioning.proto
-- virtual_service.proto
-- waf.proto
-- waf.proto
-- wasm.proto
-- wasm.proto
-- wasm.proto
-- wrappers.proto
-
Command Line Reference
-
Changelog
- Helm Chart Values
- Gloo Edge Port Reference
- Internal Usage Statistics
- Release Support
Contributing
waf.proto
Package: waf.options.gloo.solo.io
Types:
Settings
"disabled": bool
"customInterventionMessage": string
"coreRuleSet": .waf.options.gloo.solo.io.CoreRuleSet
"ruleSets": [] envoy.config.filter.http.modsecurity.v2.RuleSet
"auditLogging": .envoy.config.filter.http.modsecurity.v2.AuditLogging
"requestHeadersOnly": bool
"responseHeadersOnly": bool
Field
Type
Description
Default
disabledboolDisable waf on this resource (if omitted defaults to false). If a route/virtual host is configured with WAF, you must explicitly disable its WAF, i.e., it will not inherit the disabled status of its parent.
customInterventionMessagestringCustom massage to display if an intervention occurs.
coreRuleSet.waf.options.gloo.solo.io.CoreRuleSet Add OWASP core rule set if nil will not be added.
ruleSets[]envoy.config.filter.http.modsecurity.v2.RuleSet Custom rule sets rules to add.
auditLogging.envoy.config.filter.http.modsecurity.v2.AuditLogging Audit Log settings.
requestHeadersOnlyboolOnly process request headers, not buffering the request body.
responseHeadersOnlyboolOnly process response headers, not buffering the response body.
CoreRuleSet
"customSettingsString": string
"customSettingsFile": string
Field
Type
Description
Default
customSettingsStringstringString representing the core rule set custom config options. Only one of customSettingsString or customSettingsFile can be set.
customSettingsFilestringString representing the core rule set custom config options. Only one of customSettingsFile or customSettingsString can be set.
