how to manage Sucuri WAF through the Client Area

Overview

Before digging deeper into h how to manage Sucuri WAF through the Client Area. let's take a brief look at Our Website Application Firewall and what kind of protection it will give for your site. (WAF) stops bad actors, speeds up load times, and increases availability. Gain peace of mind from leading-edge protection.

The Sucuri Firewall is a cloud-based WAF that stops website hacks and attacks. Our constant research improves our detection and mitigation of evolving threats, and you can add your own custom rules.

  • Instantly Block Hackers
  • DDoS Mitigation and Prevention
  • Virtual Patching and Hardening
  • Protect Brand Reputation
  • Prevent Zero-Day Exploits

In this tutorial, we’ll focus on how to manage your Sucuri WAF through the Libyan Spider Client Area.

how to manage Sucuri WAF

  1. First, log in to the client area.
  2. Navigate Hosting & Services > My Hosting & Services.
  3. From the service list choose the “Sucuri WAF” Service.
  4. Choosing “Sucuri WAF” will point you to the service Dashboard, you will find the flowing options on t the dashboard:

    General 

    Sucuri Details  will check if your service is activated by pointing your Domain name to Firewall IP Address as showing on the table. Notice: in order to make your firewall active you need to point your domain name to Firewall IP address
    Overview  showing all service details DNS records and Firewall IP to add it to your server whitelist, If you have a firewall on your hosting server (like CSF or ModSecurity), we recommend that you whitelist our IP addresses (listed below). As all connections to your hosting server will be passing through our firewall, by whitelisting our IP addresses, it will prevent us from being blocked incorrectly.
    Host IP address                                                             If your site runs on multiple hosting servers, you can add multiple hosting IP addresses for them to be load balanced. You can also provide a failover backup IP address that will be used in case your main hosting IP addresses are not responding.

    Access Control 

    Whitelist IP address                                      This option allows you to whitelist trusted IP addresses that will not be blocked by some of our security rules. Any IP address listed here will also have access to the administration panels like “administrator” or “wp-admin” if you have it restricted to only trusted IP addresses on the security settings.
    Blacklist IP address This option allows you to ban an IP address from visiting your website.
    Whitelist URL paths If a specific URL is being blocked by our Website Firewall, you can whitelist it. For example, if you need to use TimThumb and our hardening is preventing that, you can allow its path, (e.g.“/wp-content/themes/my_theme/timthumb.php”)
    Blacklist URL Paths  If you have any URL that you want to block access to, you can add it here. Only whitelisted IP addresses will be allowed to visit them. This can be useful if you want to restrict access to certain pages or content.

    Performance  

    Caching Level By default, our Website Firewall will cache certain pages of your site to improve the speed and the experience for your users. You can disable caching here if for some reason you do not want that to happen. It is not recommended since it can slow down the user experience.
    Clear Cache This option can be used to clear the whole Website Firewall cache after any website changes have been made. This will reflect live as soon as you click the clear cache button, but it might take a couple of minutes depending on the size of the website and the number of cached objects.
    Clear Cache Per File If you want to clear the cache on a specific file or folder, you can do it here. This will reflect live as soon as you click the clear cache button.
    Enable Compression Compressing resources will reduce the number of bytes sent over the network and will improve performance for most web sites. It is recommended to enable it.
    Non-Cache URLs                                                 If you want to have the Website Firewall cache enabled on your site, but disable it for certain directories, you can do it here. Just specify what paths should not be cached and we will never do any caching there.

    Security 

    Security This option will add some recommended security headers to your site in order to protect you against some forms of XSS and clickjacking attacks. If you allow other sites to “iframe” your content, do not enable this option. The following headers will be added: X-XSS-Protection, X-Frame-Options.
    HTTPS/SSL Support                             SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client. More specifically, SSL is a security protocol that allows sensitive information such as credit card numbers, social security numbers, and login credentials to be 

    transmitted securely.

    Email Reports 

    Email Reports send reports to a specified Email address.

    Audit Trails 

    Audit Trails Will show logs.

    Actions 

    Request Cancellation to cancel the service.

Share this:
Updated on July 2, 2020

Was this article helpful?

Related Articles