Skip to content

Haltdos Community WAF

In this article

Note

Haltdos Community WAF is a comprehensive security monitoring and threat detection platform. It serves as an application-level protection system (L7 of the OSI model) implemented as a reverse proxy server, providing filtering, monitoring, and blocking of HTTP/HTTPS traffic between clients and protected web applications or APIs.

The WAF functions as an intermediate node in the request processing chain to prevent exploitation of vulnerabilities in application logic, including those categorized under OWASP Top 10.

Haltdos Community WAF. Main Features

  • Management via GUI - Implemented is a web-oriented administrative interface (Admin UI) with role-based access control (RBAC).
  • Incident Management and Audit - A unified dashboard with event aggregation by classification.
  • Geoblocking - Implementation of access policies based on geo-IP databases (MaxMind DB or equivalents), allowing/denying traffic.
  • Bot Traffic Management - Detection of automated clients.
  • Built-in Signatures - Comes with Core Rule Set (CRS) comparable to OWASP ModSecurity CRS v3.3+.
  • Custom Rules - Support for creating custom policies via a visual rules editor.
  • Integrated Load Balancing - Built-in reverse proxy with L7 routing.

Deployment Features

ID Compatible OS VM BM VGPU GPU Min CPU (Cores) Min RAM (Gb) Min HDD/SDD (Gb) Active
456 Ubuntu 22.04 + + + + 2 2 60 No
  • Installation possible on Ubuntu 22.04;
  • Installation time is 15-20 minutes including OS;

For Haltdos Community WAF to function correctly, the following minimal system resources are required:

  • Processor: minimum of 2 CPU cores;
  • RAM: minimum of 2 GB;
  • Disk Space: recommended at least 60 GB SSD/HDD:

Note

These requirements are for a basic installation of Haltdos Community WAF. More powerful hardware may be required for larger environments.

Note

Unless otherwise specified, we install the latest release version of the software from the developer's site or operating system repositories by default.

Getting Started After Deploying Haltdos Community WAF

After payment, a notification email will be sent to your registered email address indicating that the server is ready for use. It will include the VPS IP address and login credentials for connection. Our company's clients manage their equipment via the server management panel and APIInvapi.

Login data can be found in the Info >> Tags tab of the server management panel or in the sent email:

  • Link for accessing Haltdos Community WAF via web interface: in the webpanel tag.

Authorization and License Activation

After successfully logging into the control panel, you need to create a first user and activate the license.

  1. Fill out the registration information form:

  • Full name - employee's name
  • Organization - organization
  • Country - country
  • Email - email address
  • Designation - location

  • Phone number - phone number

    Note

    Be careful when filling out the Email field. After registration, an activation code will be sent to this email; access to the panel will be unavailable with incorrect entry.

After completing all fields, click Next

  1. Enter information for creating a user:

  • Username - username
  • Password - password
  • Confirm password - confirm password

After filling out all fields, click Next

  1. In the opened form, enter the Activation code sent to your registered email:

Click Complete Registration

  1. In the opened window, enter details of the user created during registration:

Haltdos Community WAF Welcome Screen

After successful login, you will be taken to the Haltdos Community WAF welcome screen providing an overview of the security system's status:

Key elements of the main menu include:

  • WAF — displays operation parameters and allows applying necessary settings for Web Application Firewall (WAF) - application-level firewall. In this menu, you can set up SSL parameters, geolocation, bot protection, and establish the order of standard and custom rule applications.

  • Incidents — shows incident statistics with a filter option by type of incident.

  • SSL Certificates — displays SSL certificate usage statistics. This menu also organizes the process for adding certificates.

  • Account — contains account parameter information: license details, user profile. In this menu, you can also change the user's password.

Note

Detailed information on Haltdos' main settings is available in the developers' documentation.

Changing Credentials

  1. In the main menu, select Account

  2. Navigate to the Change password section:

  3. Perform the following actions:

    • Enter your current password in the Current password field;
    • Enter a new password in the New password field, meeting security requirements:
    • At least 8 characters;
    • At least one uppercase letter;
    • At least one lowercase letter;
    • At least one digit;
    • At least one special character.
    • Re-enter the new password in the Confirm password field.

  4. Click on Change password to save changes.

Order Haltdos via API

To install this software using the API, follow these instructions

question_mark
Is there anything I can help you with?
question_mark
AI Assistant ×