modsecurity.conf last file

[Max131412]

Hi all, i had a problem with recommended configuration file modsecurity.conf . I need last protect config for this times :)
Had a new file to improve on my modsecurity waf configuration?
Only use on our DMZ.

Thanks in advice.

[airween]

Sorry to say, but I'm not sure I understand what do you want to achieve. Could you explain your issue more clearly?

[Max131412]

Sorry, I'm testing to implement the WAF to monitor our internal web applications. I've installed and activated it with the generic configuration modsecurity.comf, and I can see the log files testing with nmap and stress the apache server :) but I'd like to know how to fine-tune the filtering. I also want to know if it can be integrated with a graphical environment. Thanks in advance.

[airween]

ModSecurity (both mod_security2 and libmodsecurity3) is "just" an engine. If you want to protect your application/infrastructure, you must install a rule set. We prefer CRS. Or if you don't want to use any rule set, you can write your own rules - see the documentation: (it depends on which version you use)

• for mod_security2
• for libmodsecurity3

I also want to know if it can be integrated with a graphical environment.

I know only one GUI: modseccfg, but I think it's a bit hard to use - you should give a try.

[Max131412]

Sorry step by step that this web at the last step.. i have this error when restart apache sudo apache2ctl -t
AH00526: Syntax error on line 23 of /etc/modsecurity/modsecurity.conf:
ModSecurity: Found another rule with the same id.
Do you know about this error?
Thanks :)

[airween]

ModSecurity: Found another rule with the same id.
Do you know about this error?

Probably you included a rule/config file more than once.