Exclude server/host

[kujak]

How to exclude host/server properly to make excluded server works the same performance as without nemesida WAF.

Let's say nginx make proxypasses to different locations
example_1.com
example_2.com

I want requests to be processed by WAF only to one host and other should stay the same as without module loaded (100% performance without nemesida request processing)

 

[support]

Yes, you can use the option in the nwaf.conf file:

nwaf_host_enable example.com;

 

[kujak]

Yes, you can use the option in the nwaf.conf file:

nwaf_host_enable example.com;

Thanks
So host which are not included (without protection) works on 100% performance without processing engine?
This info is important, not only exclusion but is this real exclusion like without module at all ?

 

[rr]

Thanks
So host which are not included (without protection) works on 100% performance without processing engine?
This info is important, not only exclusion but is this real exclusion like without module at all ?

Yes

 

[kujak]

Thanks

 

[Golforks]

For Nemesida WAF, you can configure exclusions by editing the nwaf.conf file, specifying the hosts you want to bypass the WAF for, which should leave them unaffected by the processing engine. If you’re looking to keep performance high without any interference on example_2.com, setting up an Offshore Dedicated server could also help, especially if you’re dealing with high-traffic sites. This way, you can maintain top performance for the excluded host without extra load from WAF processes on non-critical requests.