I am after some guidance on how I would possibly implement WAF on my applications.
Currently we run some PHP based applications on a Rackspace server. These applications have their own SSL certificates.
How exactly will the WAF work with data being encrypted by SSL? Having read through some of the help articles, from my understanding CF would provide their own SSL certs that I would need to use in place of the existing ones - is this correct?
Also what changes would we need to make to the domain in terms of domain records?