Comodo
Web Application Firewall
- Admin Guide
1. Comodo Free ModSecurity Rules -
Introduction
Web applications are arguably the most important back-end component of any online business. They are used to power many of
the features most of us take for granted on a website, including web-mail, online stores, software-as-a-service, payment
gateways, forums, dynamic content, social media functionality and much more. A security breach on a web application can have
potentially devastating implications for the site owner, including site downtime, loss of corporate data and even theft of
confidential customer information. It is therefore of paramount importance that web applications are kept strongly protected
against attack at all times. Comodo Web Application Firewall (CWAF) provides powerful, real-time protection for web
applications and websites running on Apache and Linux based web-servers.
CWAF is easy to set up and offers a customizable, rules-based traffic control system that delivers persistent protection against
all known internet threats. Frequent updates to the firewall rules database means your web site is even protected against the
latest, emerging hacking techniques that might be affecting other websites.
Once installed and configured, CWAF just requires the latest firewall rule sets to be downloaded and deployed to your servers.
The simple web administration console allows administrators to manually download and implement the latest rule set or a rule-
set from a previous version. Administrators can install the CWAF agent or the web hosting control panel plugin (currently cPanel
and Plesk plugins are available) to automatically fetch and install the new rules as soon as they become available. The plugins
can also be used to configure the overall behavior of CWAF and to customize the rule sets by excluding unwanted rules from
implementation.
Currently CWAF is designed for and has been tested on Apache and LiteSpeed on Linux servers. Versions for other web-server
types are coming shortly.
Guide Structure
This guide is intended to take the administrator through the sign-up, configuration and use of Comodo Web Application Firewall.
• Comodo Web Application Firewall - Introduction - A high level description of the product
• System Requirements - List of compatible server environments for CWAF
• Signing up for Web Application Firewall - Guidance on signing-up for the product
• Logging-in to the Administration Console - Guidance on logging-in to the web administration console
• The Administration Console - The Main Interface - Description of the web administration console
• Deploying CWAF rules on Server - Guidance on downloading and deploying the firewall rule sets on to the server
• Using the CWAF Agent - Guidance on using the CWAF agent for downloading and deploying the firewall rule
sets
• Installing the Web Hosting Control Panel Plugin
• Installing the Agent for Deploying the Rule Sets
• Using the Web Hosting Control Panel Plugin for Firewall Configuration
• Using the Agent for Firewall Configuration
• Uninstalling the CWAF Agent
• Downloading and installing rule set packages - Guidance on manually downloading and deploying the
firewall rule sets
• Reporting Problems to Comodo - Guidance on posting feedback to Comodo
• Submitting Ticket for troubleshooting – Guidance on submitting support tickets to Comodo
• Managing CWAF License - Guidance on viewing and managing licenses and subscribing for other Comodo products
and services
1.1.System Requirements
The Web Application Firewall can be implemented on to the following web application servers:
• Apache or LiteSpeed web server on Linux server platform
Comodo Web Application Firewall Administrator Guide | © 2015 Comodo Security Solutions Inc. | All rights reserved 3