Open source WAF firewall "Janusec Application Gateway" construction 01/16 Update SLTechnology News&Howtos

Open source WAF firewall "Janusec Application Gateway" construction

2025-01-16 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Shulou(Shulou.com)06/01 Report--

0x01 introduces Janusec Application Gateway

Janusec Application Gateway, an application security solution, provides WAF (Web Application Firewall), unified Web management portal, private key protection, Web routing and scalable load balancing. With Janusec, you can build secure and scalable applications.

Main features

WAF (Web Application Firewall), block SQL injection, cross-site scripting, sensitive data disclosure, CC***, etc.

Group policy (working with multiple check points)

CAPTCHA support

Unified Web Management

HTTPS support, no agent required.

Using private key encrypted storage for certificate protection

Scalable architecture, load balancing and multi-node support

Introduction of 0x02 environment and installation preparation

1 system requirements:

Node operating system database master node CentOS/RHEL 7, or Debian 9, x86_64PostgreSQL 9.39.49.59.610

2. Installation preparation

2.1system: Centos 7 x86 minimum installation

2.2 Update # yum update

2.3 install the PostgreSQL database

2.3.1 add PostgreSQL database source, yum installation

# yum install https://download.postgresql.org/pub/repos/yum/10/redhat/rhel-7-x86_64/pgdg-centos10-10-2.noarch.rpm

# yum install postgresql10-server

# / usr/pgsql-10/bin/postgresql-10-setup initdb

# systemctl restart postgresql-10.service

# su-postgres

-bash-4.2$ psql # enter the console to create users and libraries

Postgres=# create user janusec with password 'abc789@.com'

Postgres=# create database janusec owner janusec

Postgres=# grant all privileges on database janusec to janusec

Postgres=#\ Q

Exit

2.3.2 modify PostgreSQL authentication method

# vi / var/lib/pgsql/10/data/pg_hba.conf

Modify this line in pg_hba.conf:

Host all all 127.0.0.1/32 md5

# systemctl restart postgresql-10.service # restart the PostgreSQL service

# systemctl enable postgresql-10.service # add startup service

0x03 Janusec installation

3.1 download the installation package

# cd~

# wget https://www.janusec.com/download/janusec-latest.tar.gz

# tar zxf. / janusec-latest.tar.gz

3.2 installation (note that ROOT permission is required)

The path after installation is: / usr/local/janusec/

# cd janusec-0.9.3

#. / install.sh

Select 1. Master Node

3.3 modify database connection configuration

# vi / usr/local/janusec/config.json

# systemctl start janusec.service # start the WAF service

# systemctl enable janusec.service # add startup service

0x04 Janusec test

Open a Web browser, such as Chrome access

Http:// your_master_ip_address:9080 /

Note: you can turn off Centos Firewall during testing.

Refer to the official document: https://www.janusec.com/documentation

Project github address: https://github.com/Janusec/janusec

Repost please indicate that it is transferred from: https://www.security-360.cn/

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.