The following are the steps involved and the recommended settings to configure the IIS HTTP WAF Virtual Service:

  1. In the main menu of the LoadMaster WUI, go to Virtual Services > Add New.

  2. Type a valid Virtual Address.
  3. Type 80 as the Port.
  4. Enter a recognizable Service Name, such as IIS HTTP WAF Virtual Service.
  5. Click Add this Virtual Service.
  6. Configure the settings as recommended in the following table:

    Section

    Option

    Value

    Standard Options

    Persistence Mode

    Source IP Address

    Timeout

    6 Minutes

    Scheduling Method

    least connection

    WAF Options

    Enabled

    Yes

    Default Operation

    Block Mode

    Audit mode

    Audit Relevant

    Enabled Rules

    owasp_protocol_violations

    owasp_protocol_anomalies

    owasp_request_limits

    owasp_bad_robots

    owasp_generic_attacks

    owasp_xss_attacks

    owasp trojans

    owasp_common_exceptions

    Application Specific

    iis_attacks

    Real Servers

    Real Server Check Method

    HTTPS Protocol

    Real Servers

    URL

    /
  7. Add the Real Servers:
  8. Expand the Real Servers section.
  9. Click Add New.
    1. Enter the address of the relevant Real Server.
    2. Complete the other fields as required.
    3. Click Add this Real Server then click OK to the pop-up message.
    4. Repeat the steps above to add more Real Servers as needed, based on your environment.