Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WAF for pfSense/pfSense+ - eg. Coraza WAF via haproxy SPOE?

    Scheduled Pinned Locked Moved pfSense Packages
    1 Posts 1 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sandie
      last edited by

      Hi,

      I know this question was asked several times in the past, but I believe that it would be great if pfSense could act as WAF (Web Application Firewall) and not only plain Reverse Proxy.
      Out of the box there is only one option of Reverse Proxy if I am not mistaken (haproxy). I am very happy user of haproxy - fast, capable, industry standard.
      I would like to ask for preparing and distributing some haproxy extension, eg. leverage haproxy SPOE. There seems to be opensource Coraza Web Application Firewall available, which is a port of ModSecurity, can easily import OWASP rules and can easily integrate with haproxy.

      https://coraza.io/connectors/coraza-spoa/

      Do you think that you could package Coraza WAF for pfSense or pfSense+? I am not sure how much you are keen to add new features, but this (extra) option seems to be very nice extension to haproxy.

      I would be also happy for hear something about Crowdsec package. Do you think that this 3rd party package could be added to pfSense/pfSense+?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.