I have an Apache web server in my DMZ that uses numerous virtual hosts to serve up different websites.
For many years I have simply used a DNAT rule for my web server, which has been working fine.
I decided to try using the WAF instead, but have run into problems.
The WAF configuration I setup is pretty basic.
To start with, I disabled the existing DNAT rule.
I defined a Real Webserver that points to my actual webserver.
Plaintext (HTTP) - WebServer - 80
The Virtual Webserver
External Address - Plaintext (HTTP) - 80 - domain1.com & domain2.com - Real Webserver - Basic protection
When I try to access either of the 2 domains the webserver serves up the document root index.html file, which indicates that it is not parsing the correct information to the server, so I cannot get to any of the actual websites (defined as virtual hosts in the httpd-vhosts.conf file.
There are no errors in the log file. In fact, I see a status code of 200, which indicates success.
2022:05:14-02:20:56 firewall httpd: id="0299" srcip="1.145.6.84" localip="180.200.xxx.xxx" size="1106" user="-" host="1.145.6.84" method="GET" statuscode="200" reason="-" extra="-" exceptions="-" time="2904" url="/" server="domain1.com" port="80" query="" referer="-" cookie="-" set-cookie="-" websocket_scheme="-" websocket_protocol="-" websocket_key="-" websocket_version="-" uid="Yn6FaDfh6itcQLjSPvhVtgAAAAQ"
I am obviously missing something here, but I have no idea what.
How do I use the WAF with virtual hosts?
This thread was automatically locked due to age.
