Before digging deeper into how to manage Sucuri WAF through the Client Area. let's take a brief look at Our Website Application Firewall and what kind of protection it will give for your site. (WAF) stops bad actors, speeds up load times, and increases availability. Gain peace of mind from leading-edge protection.
The Sucuri Firewall is a cloud-based WAF that stops website hacks and attacks. Our constant research improves our detection and mitigation of evolving threats, and you can add your own custom rules.
- Instantly Block Hackers
- DDoS Mitigation and Prevention
- Virtual Patching and Hardening
- Protect Brand Reputation
- Prevent Zero-Day Exploits
In this tutorial, we’ll focus on how to manage your Sucuri WAF through the Libyan Spider Client Area.
how to manage Sucuri WAF
- First, log in to the client area.
- In homepage, click on Cloud Services.
- From My Products & Services list, select the “Sucuri WAF” Service.
- Choosing “Sucuri WAF” will point you to the service Dashboard, where you will find the following options :
Sucuri Details will check if your service is activated by pointing your Domain name to Firewall IP Address as showing on the table. Notice: To make your firewall active you need to point your domain name to the Firewall IP address Overview showing all service details DNS records and Firewall IP to add it to your server whitelist, If you have a firewall on your hosting server (like CSF or ModSecurity), we recommend that you whitelist our IP addresses (listed below). As all connections to your hosting server will be passing through our firewall, whitelisting our IP addresses will prevent us from being blocked incorrectly. Host IP address If your site runs on multiple hosting servers, you can add multiple hosting IP addresses for them to be load balanced. You can also provide a failover backup IP address that will be used in case your main hosting IP addresses are not responding.
Whitelist IP address This option allows you to whitelist trusted IP addresses that will not be blocked by some of our security rules. Any IP address listed here will also have access to the administration panels like “administrator” or “wp-admin” if you have it restricted to only trusted IP addresses on the security settings. Blacklist IP address This option allows you to ban an IP address from visiting your website. Whitelist URL paths If a specific URL is being blocked by our Website Firewall, you can whitelist it. For example, if you need to use TimThumb and our hardening is preventing that, you can allow its path, (e.g.“/wp-content/themes/my_theme/timthumb.php”) Blacklist URL Paths If you have any URL that you want to block access to, you can add it here. Only whitelisted IP addresses will be allowed to visit them. This can be useful if you want to restrict access to certain pages or content.
Caching Level By default, our Website Firewall will cache certain pages of your site to improve your users' speed and experience. You can disable caching here if for some reason you do not want that to happen. It is not recommended since it can slow down the user experience. Clear Cache This option can be used to clear the whole Website Firewall cache after any website changes have been made. This will reflect live as soon as you click the clear cache button, but it might take a couple of minutes depending on the size of the website and the number of cached objects. Clear Cache Per File If you want to clear the cache on a specific file or folder, you can do it here. This will reflect live as soon as you click the clear cache button. Enable Compression Compressing resources will reduce the number of bytes sent over the network and improve most websites' performance. It is recommended to enable it. Non-Cache URLs If you want to have the Website Firewall cache enabled on your site, but disable it for certain directories, you can do it here. Just specify what paths should not be cached and we will never do any caching there.
Security This option will add some recommended security headers to your site to protect you against some forms of XSS and clickjacking attacks. If you allow other sites to “iframe” your content, do not enable this option. The following headers will be added: X-XSS-Protection, X-Frame-Options. HTTPS/SSL Support SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client. More specifically, SSL is a security protocol that allows sensitive information such as credit card numbers, social security numbers, and login credentials to be
Email Reports send reports to a specified Email address.
Audit Trails Will show logs.
Request Cancellation to cancel the service.