From 435ce8649784a3ca46c22c365ebaebc993ee734d Mon Sep 17 00:00:00 2001 From: mley Date: Wed, 9 Aug 2023 14:45:18 -0700 Subject: [PATCH] Disable Modsecurity from interanl processing --- rootfs/etc/nginx/template/nginx.tmpl | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl index 0f44efc3d..ee7ec807e 100644 --- a/rootfs/etc/nginx/template/nginx.tmpl +++ b/rootfs/etc/nginx/template/nginx.tmpl @@ -709,6 +709,11 @@ http { # default server, used for NGINX healthcheck and access to nginx stats server { + # Ensure that modsecurity will not run on an internal location as this is not accessible from outside + {{ if $modsecurityEnabled }} + modsecurity off; + {{ end }} + listen 127.0.0.1:{{ .StatusPort }}; set $proxy_upstream_name "internal";