I enabled modsecurity: "true" and enable-owasp-modsecurity-crs: "true" via the configmap of the nginx ingresss controller according to this link . In the annotation of the ingress I set SecRuleEngine On. When I use nikto to do some scans and try to trigger the owasp rules I only see 400 responses in the ingress logging. I would expect 403 responses. Anyone any idea on what I am doing wrong or what to check?
Nginx ingress controller modsecurity
4k Views Asked by bramvdk At
1
There are 1 best solutions below
Related Questions in KUBERNETES
- How to know a Pod's own IP address from inside a container in the Pod?
- Who will decide the "specified number of pods" for replication controller in kubernetes?
- Access other containers of a pod in Kubernetes
- Kubernetes cluster using Vagrant not working after restart
- kubectl not installed with gcloud SDK
- How do I access the Kubernetes api from within a pod container?
- Exposing several services with Vagrant and Kubernetes on my own server
- Does Kubernetes provision new VMs for pods on my cloud platform?
- Any suggestion for running Aerospike on Kubernetes on CoreOS on GCE?
- Kubernetes - kubectl exec bash - session drop and line width
- Google Container Engine (GKE): "Hello Wordpress" tutorial not working (ERR_CONNECTION_REFUSED)
- Kubernetes Pod Creation Speed
- How can i set max count of pods for replication-controller per node?
- Is there a way to tell kubernetes to update your containers?
- Postgres with Kubernetes and persistentDisk
Related Questions in KUBERNETES-INGRESS
- Global static IP name on NGINX Ingress
- Nginx Controller upgrade is failing on Kubernetes 1.16.10 cluster
- write ingress rule for application running with context-root
- How to remove the server header from Kubernetes deployed applications
- Back-off restarting failed container kubernetes
- Stickiness not working on request header for Ambassador in Kubernetes
- Get error "unknown field "serviceName" in io.k8s.api.networking.v1.IngressBackend" when switch from v1beta1 to v1 in Kubernetes Ingress
- Minikube Ingress (Nginx Controller) not working
- How to setup Kubernetes NLB Load Balancer with target group "IP" based [AWS]?
- Ingress for TCP ports, is it possible to route to different services using the same port number in a similar way NGINX routes for http ports?
- Ingress controller gives "Service does not have any active Endpoint" only when app deployed in different namespace from ingress controller
- ingress always showing default backend - 404
- Multiple services on same url in kubernetes
- Kubernetes Route to Service using Ingress hostname | Keycloak
- Configure two environment for kubernetes within Azure
Related Questions in MOD-SECURITY2
- mod_security blocks data binding in MVC4
- modsecurity whitelist ip range
- mod_security blocks only internet explorer
- ModSecurity not detecting DDoS attack on DVWA
- ModSecurity SQL rules activated by image called 'warning.png'
- Apache server reverse proxy: increase file upload limit
- modsecurity blocking but not logging a violation
- ModSecurity: Block simultaneous requests to multiple sites
- ModSecurity Block invalid host referer
- ModSecurity count the number of hosts accessed by an IP
- How to generate email alert for modsecurity rule set execution
- Secrule modsecurity random numbers and adress ip post method
- 403 - modsecurity action in the live website?
- Nginx ingress controller modsecurity
- File download scanning with modsecurity
Related Questions in NGINX-INGRESS
- write ingress rule for application running with context-root
- How to remove the server header from Kubernetes deployed applications
- Back-off restarting failed container kubernetes
- Nginx ingress routing issue
- How to setup Kibana (EFK stack) on Azure Kubernetes cluster using reverse proxy ingress?
- Ingress for TCP ports, is it possible to route to different services using the same port number in a similar way NGINX routes for http ports?
- nginx not serving JS, CSS files for PHP app behind ingress-nginx
- How to route request with dynamic value in gloo ingress controller
- Kubernetes - ingress-nginx "no active endpoint" error
- Varnish for backend hosted inside kubernetes
- Filter input paths on nginx-ingress to protect backend
- Camunda page is not loading with K8s nginx rewrite annotation
- What is the node hardware requirements and kubernetes nginx ingress configuration required processing large files (3gb) in AKS cluster?
- k8s nginx Ingress take my node IP as Address
- nginx-ingress sending traffic to nginx in pod but not returning assets
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Followed the instructions on: https://karlstoney.com/2018/02/23/nginx-ingress-modsecurity-and-secchatops/
The only thing I had to change was "SecAuditLog /var/log/modsec/audit.log". Changed it to SecAuditLog /var/log/modsec_audit.log