In this video I am going to show you how to configure your OPNSense firewall as a Web Application Firewall or WAF. We will discuss the main benefits of a WAF and how it can be used to help protect your web app from common injection type attacks. OPNSense has many great plugins to enhance its abilities and in this case we are going to use the NGINX plugin to benefit from the NGINX Anti XSS & SQL Injection module also known as NAXSI. So what are you waiting for, jump straight into the video and in less than 20mins you can have a fully functional WAF using your favorite OPNSense firewall.
P.S. – Also, please don’t forget to like and subscribe!
Links used in video:
https://www.w3schools.com/sql/sql_injection.asp
https://docs.opnsense.org/manual/how-tos/nginx_waf.html
https://github.com/digininja/DVWA