WAF set to off,but OWASP rules set to ON - am i protected?

On my Firewall setting page i have this:

But does this mean that “managed rule set”, OWASP, DDoS protection is disabled as well? Or are they not a part of the WAF?

Take OWASP

They are all set to ON, but WAF is off. Does that mean that OWASP is working, but WAF is not? Is OWASP even enabled when sensitivity is set to OFF, but alle modes is set to On?

I have a hard time seeing how these correlate.

OWASP is a “rule set” for the WAF; same for the “manged rule set”. If WAF is off, no rule sets will run.

Other security features like DDOS protection are independent of the WAF and run based on the “security level”.

This topic was automatically closed after 30 days. New replies are no longer allowed.