Imperva Cyber Community

Hello all,

I am doing WAF testing on the VM environment.I need information regarding how can i do PoC in Waf in our VM LAB environment.

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

What would be the traffic Flow for my LAB environment?

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

3)As of now, i have created a Management server (VM150) and single gateway model (V2500) and both are running and registered.

Waiting for your response.

Regards,

Sagar

#On-PremisesWAF(formerlySecuresphere)

------------------------------
Sagar E
Consultant
Quoinx Technologies Pvt Limited
Mumbai
------------------------------

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

Accessing your Lab from outside is not relative to the IMPERVA WAF GW but to our LAB  environment. Setting up a VPN to access your LAB from outside is recommended.

Regarding the Web application, no need to create it from scratch a lot of vuln apps are available online for dev you can set up dvwa from here

https://github.com/digininja/DVWA

What would be the traffic Flow for my LAB environment?

Again depending your lab environment.

Client(win vm or linux vm) --GW----Webapp

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

I prefer reverse mode.

https://community.imperva.com/blogs/ira-miga1/2020/12/07/how-to-configure-imperva-waf-reverse-proxy-mode

For more information relative to topology and deployment mode :

https://docs.imperva.com/bundle/v14.4-waf-administration-guide/page/7187.htm

Hello all,

I am doing WAF testing on the VM environment.I need information regarding how can i do PoC in Waf in our VM LAB environment.

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

What would be the traffic Flow for my LAB environment?

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

3)As of now, i have created a Management server (VM150) and single gateway model (V2500) and both are running and registered.

Waiting for your response.

Regards,

Sagar

Dear Alphonse,

Thank you for your response.

Will create a Lab and check it out.

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

Accessing your Lab from outside is not relative to the IMPERVA WAF GW but to our LAB  environment. Setting up a VPN to access your LAB from outside is recommended.

Regarding the Web application, no need to create it from scratch a lot of vuln apps are available online for dev you can set up dvwa from here

https://github.com/digininja/DVWA

What would be the traffic Flow for my LAB environment?

Again depending your lab environment.

Client(win vm or linux vm) --GW----Webapp

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

I prefer reverse mode.

https://community.imperva.com/blogs/ira-miga1/2020/12/07/how-to-configure-imperva-waf-reverse-proxy-mode

For more information relative to topology and deployment mode :

https://docs.imperva.com/bundle/v14.4-waf-administration-guide/page/7187.htm

Hello all,

I am doing WAF testing on the VM environment.I need information regarding how can i do PoC in Waf in our VM LAB environment.

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

What would be the traffic Flow for my LAB environment?

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

3)As of now, i have created a Management server (VM150) and single gateway model (V2500) and both are running and registered.

Waiting for your response.

Regards,

Sagar

Dear Team,

We have created a VM lab environment in reverse proxy mode but i am intiating a traffic it not reaching through windows application server which is behind the WAF gateway.

what policy or sites should I create in WAF device?so that traffic will reach through WAF and then application server.

Also is there any command to check the DROP logs or whhere we can see traffic drop logs in WAF ?

Regards,

Sagar

Dear Alphonse,

Thank you for your response.

Will create a Lab and check it out.

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

Accessing your Lab from outside is not relative to the IMPERVA WAF GW but to our LAB  environment. Setting up a VPN to access your LAB from outside is recommended.

Regarding the Web application, no need to create it from scratch a lot of vuln apps are available online for dev you can set up dvwa from here

https://github.com/digininja/DVWA

What would be the traffic Flow for my LAB environment?

Again depending your lab environment.

Client(win vm or linux vm) --GW----Webapp

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

I prefer reverse mode.

https://community.imperva.com/blogs/ira-miga1/2020/12/07/how-to-configure-imperva-waf-reverse-proxy-mode

For more information relative to topology and deployment mode :

https://docs.imperva.com/bundle/v14.4-waf-administration-guide/page/7187.htm

Hello all,

I am doing WAF testing on the VM environment.I need information regarding how can i do PoC in Waf in our VM LAB environment.

1)How can i create an web application so that we can test any vulnerable URL we can access from outside and how the WAF device will protect.

What would be the traffic Flow for my LAB environment?

2)Which mode I will be used in my WAF device is it 'Bridge IMPVHA or Reverse proxy mode? Can anyone explain in easy method of the bridge mode and Reverse proxy mode working.

3)As of now, i have created a Management server (VM150) and single gateway model (V2500) and both are running and registered.

Waiting for your response.

Regards,

Sagar