DX NetOps

Expand all | Collapse all

CA Spectrum ModSecurity default setup improvement for R10.1++

  • 1.  CA Spectrum ModSecurity default setup improvement for R10.1++

    Broadcom Employee
    Posted 07-24-2017 12:25 PM
      |   view attached

    Dear all, 

     

    introduced with CA Spectrum R10.1 the Apache Modsecurity firewall service is available as a proxy service in front of the OC-Server/Tomcat-Service. This will allow to save the OC-Server operation and "common attacks" may not reach this service at all. 

     

    The current R10.1* and R10.2 implementation needs to be improved (and reconfigured) to re-enable the important CA Spectrum OC-Console Heartbeat(alive logic) (red-framed OC-Console in case of OC-service disconnect). This improvement will become part of CA Spectrum R10.3. 

     

    In addition the ./apache/logs/error.log is showing high number of error messages due to missing databases (IP and GLOBAL) - which will fill up the logs. Even those messages are benign, those will not come up by a reconfiguration for the Apache setup. 

     

    Find the attached document which helps to reconfigure the Apache ModSecurity service. 

     

    Kind regards, Joerg 

    Attachment(s)



  • 2.  Re: CA Spectrum ModSecurity default setup improvement for R10.1++

    Posted 09-27-2017 07:55 AM