Imperva Cyber Community

Expand all | Collapse all

Questions on ABR mode.

  • 1.  Questions on ABR mode.

    Posted 06-29-2021 05:03
    1. How do we on-board an application in ABR mode? Please correct me if there any changes needed on below steps.

    1. Add IP under server-group.
    2. Add  certificate under service > definition tab.
    3. Add TRP rule under service > reverse proxy tab.
    4.  Add application under Application tab

    2. What would be the behavior of application if we remove the particular IP from the TRP rule? In that case, would WAF acting as bridge for that IP same as in normal bridge mode?
    3. Is there any change expected in packets from WAF to the back end server IP in ABR mode, we assume everything will be transparent?

    Nishanth Minikkaran
    Minneapolis MN

  • 2.  RE: Questions on ABR mode.

    Posted 06-29-2021 11:14
    Hi Nishanth,

    Whats ABR mode..? from above steps it seems you're talking about TRP.

    2. If you remove ip's from TRP, waf will not be able to inspect HTTPS traffic destined for that application. WAF will continue acting as bridge and pass traffic.