南墙的介绍社区有人介绍过了,传送门
几种WAF对比,传送门
看到很多分享中说南墙uusec不支持docker部署,必须占用80/443端口,实则不然,下面分享docker部署南墙防火墙
networks:
uusec-network:
services:
uuwaf:
image: uusec/waf:7.1.1
ulimits:
nproc: 65535
nofile:
soft: 102400
hard: 102400
container_name: uuwaf
networks:
- uusec-network
ports:
- 8080:80
- 8443:443
- 4443:4443
volumes:
- /etc/localtime:/etc/localtime:ro
- ./waf_config:/uuwaf/web/conf
- ./waf_acme:/uuwaf/acme
- ./waf_logs:/uuwaf/logs
environment:
- UUWAF_MYSQL_PASSWORD=Safe3.WAF
- UUWAF_RESOLVER=resolver 127.0.0.11 valid=30s ipv6=off;
depends_on:
wafdb:
condition: service_healthy
wafdb:
image: mysql:5.7.44
container_name: uuwaf-db
networks:
- uusec-network
volumes:
- /etc/timezone:/etc/timezone:ro
- /etc/localtime:/etc/localtime:ro
- ./waf_data:/var/lib/mysql
environment:
- MYSQL_ROOT_PASSWORD=Safe3.WAF
command: ["--max_connections=512"]
healthcheck:
test: ["CMD", "mysqladmin", "-uroot", "-pSafe3.WAF", "ping", "-h", "127.0.0.1", "--silent"]
start_period: 3s
interval: 5s
timeout: 3s
retries: 10
默认管理账号: admin ,密码 #Passw0rd
