Topics Archives:

WAF 2.0 Module

The WAF 2.0 module is able to block web-based attacks before they could reach the server. If a well-aimed web-based attack like a PHP code injection reaches the server it will cause serious issues on the server. Also, the most popular CMS-es and their plugins, like WordPress or Drupal have a...

The WAF module is not working

If the pre-requirements are met but the WAF module is still not running we will need to check a few things. Are all IP addresses of the server added to the X-Forwarded-For header? Have you set up the Transparent Proxy mode in the WAF module instead of the X-Forwarded-For header in your ...

Set up X-Forwarded-For in Plesk

In Plesk, the X-Forwarded-For header is already included with all IP addresses of the server in the configuration files of all web server applications. If remoteip is not enabled yet, you need to enable remoteip. from Plesk. Go to Tools and settingsApache Web ServerTick in remoteip’s checkbox ...

Set up X-Forwarded-For in cPanel/WHM

This header needs to be set up in your web server used to serve your domains. Please insert your server’s IP addresses in the place of “INSERT YOUR IP ADDRESS(ES) HERE“. What web server do you use? I use Apache Go to: HomeService ConfigurationApache ConfigurationInclude EditorPre...

Set up X-Forwarded-For

To assist you better please select your control panel below. Cpanel/WHM Plesk I don't use any control panel If you use any sort of CDN or Proxy in front of the server. Or your users use CDN services then we will need to set up the X-Forwarded-For header to enable the B...

My website is down when BitNinja is running (Error 502 /504)

First, we need to check what kind of error code do you see. Error 502 If you see this screen when you try to access a domain that is behind CloudFlare while BitNinja is running with the WAF module enabled and the Trusted proxy module enabled. Issue bitninjacli --module=SslTermi...

My server has private IP address(es) only

By default, WAF 2.0 will only create port redirections for public IPs. However, it can be set to observe on the private interface. It can happen, that your server does not have a public interface, in this case, there are more possibilities If there is a gateway in front of the server, whic...

Location header issue

Some applications miss behave behind a proxy. This is why we need to force a redirection to remain https most of the time. Solution This behavior can be changed:You just need to change this line highlighted in the picture: Run these commands as a root user in your server’s terminal t...

I don’t use any control panel

Apache Open your Apache configuration file with your favourite text editor. Insert the following lines at the end of the httpd.conf or apache2.conf file. On Debian you can find the configuration file usually at /etc/apache2/httpd.conf or at /etc/apache2/apache2.conf The loc...

I don’t use CDN or Proxy, what now?

If you do not use any kind of CDN service, then there is no need to enable Trusted Proxies module, Transparent proxy is sufficient for WAF 2.0 to work properly. To enable this feature you will need to edit the WafManager’s config file which you can find here: /etc/bitninja/WAFManager/...