Add and configure a policy
This document describes how to configure a F5 WAF for NGINX security policy in the F5 NGINX One Console.
When you add a policy, NGINX One Console includes several UI-based options and presets, based on F5 WAF for NGINX.
If you already know F5 WAF for NGINX, you can go beyond the options available in the UI.
From NGINX One Console, select App Protect > Policies. In the screen that appears, select Add Policy. That action opens a screen where you can:
- In General Settings, name and describe the policy.
- You can also set one of the following enforcement modes:
- Transparent
- Blocking
- You can also set one of the following enforcement modes:
For details, see the Glossary, specifically the entry: Enforcement mode. You’ll see this in the associated configuration file,
with the enforcementMode property.
You can also set a character encoding. The default encoding is Unicode (utf-8). To set a different character encoding, select Show Advanced Fields and select the Application Language of your choice.
With NGINX One Console User Interface, you get a default policy. You can also select NGINX Strict for a more rigorous policy:
View the F5 WAF for NGINX "General Configuration" information.
NGINX One Console includes a Policy JSON section which displays your policy in JSON format. What you configure here is written to your instance of F5 WAF for NGINX.
With the Edit option, you can customize this policy. It opens the JSON file in a local editor. When you select Save Policy, it saves the latest version of what you’ve configured. You’ll see your new policy under the name you used.
From NGINX One Console, you can review the policies that you’ve saved, along with their versions. Select App Protect > Policies. Select the policy that you want to review or modify.