The following is the Pagoda panel tutorial column to share with you how to use the Pagoda website firewall. I hope it will be helpful to friends in need!
Recommended tutorial: "Pagoda Panel"
Nginx firewall recommends using Nginx 1.18 and above . Better compatibility
If it is a version less than 1.18, the compatibility of compilation and installation is also OK.
It is recommended that the lower version of Nginx be updated to Nginx1.18 or Nginx 1.19
Introduction:
There have always been users who suggested that we develop Trojan scanning and Trojan cleaning modules, but we think Rather than making up for it, it is better to directly prevent the site from being hacked at the source. "Pagoda Website Firewall" is a set of application layer firewalls developed based on the nginx/apache module. It can effectively prevent most penetration attacks and provides a high degree of freedom of rules. Custom functions add an ironclad wall to the site. Currently, the Pagoda official website and official forum have become the first users of the "Pagoda Website Firewall" with good results.
Note:
1. Please choose whether to support Nginx or Apache firewall according to your website environment
2. If you do not understand regular expressions, please do not hesitate Modify the rules that come with the firewall
3. The Pagoda website firewall relies on the luaJIT component, and some nginx versions may need to be reinstalled before it can be used
Application scenarios: all dynamic websites
Features:
1. Site-oriented rule application
2. The protection function of a certain site can be turned off or on independently
3. Highly free rule application, allowing users to edit and Choose whether a site uses this rule
Main functions:
1. General filtering, including GET (URI, URI parameters), POST, Cookie, User-Agent, Header, IP black and white list , URI black and white list, etc.
2. Prohibit access to foreign sites. After opening, the site only allows domestic users to access (including Hong Kong, Macau, and Taiwan)
3. URI encryption protection, commonly used Protection of the website backend
4. URI-specific rules to quickly patch vulnerabilities
5. CDN mode. If your site uses CDN, please enable the CDN mode, otherwise the firewall may affect the website. Normal access.
Version update: ver 1.5
1. Added CC defense enhanced mode. Requests suspected of mixed CC attacks in enhanced mode will pop up verification questions. Users can continue accessing after entering the answer correctly
2. Fixed the issue where some blocked IPs are displayed as 'unblocked' when there are too many blocked IPs.
3. Adjust the cache and optimize concurrency performance.
Version update :ver 1.7
1. Adjust the POST strategy to reduce false positives
2. Fix the problem that the statistical data cannot be obtained after deleting the site
3. Adjust some interactive UI
Preview
##
The above is the detailed content of Share Pagoda website firewall usage help. For more information, please follow other related articles on the PHP Chinese website!