How To Setu Web Application Firewall In Plesk

This article describes how to configure the Web Application Firewall in Plesk.

The Web Application Firewall uses ModSecurity to help detect and prevent attacks against your web applications. ModSecurity does this by using rules (known as SecRules) that enable real-time monitoring, logging, and filtering of HTTP traffic. Some of the attacks that ModSecurity helps to prevent include:

  • SQL injection attacks.
  • Cross-site scripting (XSS) attacks.
  • Remote and local file injection attacks.
  • Command injection attacks.
The Web Application Firewall is enabled by default, and in most scenarios, you do not need to do any additional configuration.

Enabling Web Application Firewall

The Web Application Firewall is enabled by default, but if you need to re-enable it for some reason, follow these steps:

  1. Log in to Plesk.
    If you do not know how to log in to your Plesk account, please see this article.
  2. In the left sidebar, click Websites & Domains:

    Plesk - Sidebar - Websites and Domains

  3. Locate the domain you want to configure, and then click the Web Application Firewall icon:

    Plesk - Web Application Firewall icon

  4. In the Web application firewall mode section, click On:

    Plesk - Web Application Firewall - Enable

    The Detection only option enables you to see which requests the Web Application Firewall would block, without actually denying any requests. This option can be useful for testing purposes.
  5. Click OK. Plesk enables the Web Application Firewall.

Viewing the audit log

The ModSecurity audit log shows security events for your site. If you experience problems with your site, you can analyze the audit log to determine what is happening. For example, you may need to disable a rule that is too restrictive for your site.

To view the audit log, follow these steps:

  1. Log in to Plesk.
    If you do not know how to log in to your Plesk account, please see this article.
  2. In the left sidebar, click Websites & Domains:

    Plesk - Sidebar - Websites and Domains

  3. Locate the domain you want to configure, and then click the Web Application Firewall icon:

    Plesk - Web Application Firewall icon

  4. In the ModSecurity audit log section, click ModSecurity Log File:

    Plesk - Web Application Firewall - ModSecurity Log File

    Plesk displays the audit log.

    For information about how to interpret the information in the audit log, read the ModSecurity audit log section in Plesk.

Disabling security rules

You can disable specific security rules. You may want to do this, for example, if you determine that a particular rule is too restrictive and limiting legitimate access to your site.

To disable a security rule, follow these steps:

  1. Log in to Plesk.
    If you do not know how to log in to your Plesk account, please see this article.
  2. In the left sidebar, click Websites & Domains:

    Plesk - Sidebar - Websites and Domains

  3. Locate the domain you want to configure, and then click the Web Application Firewall icon:

    Plesk - Web Application Firewall icon

  4. In the Switch off security rules section, specify the rule or rules you want to disable. You can specify rules by using:

    • ID numbers.
    • Tags.
    • Regular expressions.
  5. Click OK. Plesk disables the security rule.

Disabling Web Application Firewall

Although it is not recommended, you can completely disable Web Application Firewall for a domain. To do this, follow these steps:

  1. Log in to Plesk.
    If you do not know how to log in to your Plesk account, please see this article.
  2. In the left sidebar, click Websites & Domains:

    Plesk - Sidebar - Websites and Domains

  3. Locate the domain you want to configure, and then click the Web Application Firewall icon:

    Plesk - Web Application Firewall icon

  4. In the Web application firewall mode section, click Off:

    Plesk - Web Application Firewall - Disable

  5. Click OK. Plesk disables the Web Application Firewall.

More Information

For more information about Plesk, please visit https://www.plesk.com.

Get Windows Hosting

Article Details

  • Operating System: Windows Hosting
  • Product: Windows Reseller Hosting
  • Level: Intermediate

Other Articles in This Category

Show More

Did you find this article helpful? Then you'll love our support. Experience the A2 Hosting difference today and get a pre-secured, pre-optimized website. Check out our web hosting plans today.