Tutorials • Plesk

Setting up the web firewall in the Plesk administration panel

The Plesk panel allows you to start, stop, or set custom rules in the web firewall of the hosting account.

8

Views 452Updated 1 anPublished on 19/12/2019by Cătălin Adrian

Introduction

This article explains the steps that need to be followed to start, stop, or set specific web firewall rules in a Plesk hosting account.

Requirements

an active Plesk hosting account
login data in the panel

Steps to Follow

after logging into the Plesk administration panel, select "Web Application Firewall" from the displayed interface
on the page that will appear, the firewall can be set in three modes:

ON, ON (default setting). In this mode, each request to the server will be checked against a set of rules. If the request is not considered malicious, it is forwarded to the site; however, if it is deemed malicious by the imposed filters, the event is logged in an error log, and the request to the site is stopped with an error code.
OFF, stopped. No requests to the site will be checked.
Detection only, in detection mode only. In this mode, each request coming to the server will be checked against a set of rules. Regardless of whether the request is deemed malicious or not, it will reach the site and will be saved in an error log only if it is considered malicious.

Web Application Firewall Plesk

when accessing "Error Log File", the error logs transmitted by the firewall will be displayed

Log eroare Plesk

On this page, you can view selected logs in real-time by activating the "Start real-time updates" option and selecting the services for which you want to activate the option from the box located in the top-right corner.

Vizualizarea logurilor în timp real Plesk

the web firewall allows the deactivation of certain individual rules, which may conflict with the proper functioning of a site. Usually, these rules come in the form of IDs (identifiers) that will be present in the error log in the form [id "340003"]. To ignore a rule, you will enter its ID in the "Security rule IDs" field.

Dezactivare regulă firewall web Plesk

entire sets of rules related to certain situations, such as Brute Force attacks, Backdoor, or rules related to well-known applications like WordPress, Drupal, Joomla, etc., can also be disabled by selecting the group from the "Active" field and moving it to the "Deactivated" field

Dezactivare grup reguli firewall web Plesk

For implementing the changes, press the "OK" button located at the bottom of the page, after which a confirmation message will be displayed.

Similar Articles

Adding an alias domain in the Plesk control panel Tutorials /Plesk

In this tutorial, we will show you how to add an alias domain in the Plesk control panel.

4

by Florin Petran

Views 417

Updated 2 years ago

Published on 29/05/2019

SSL installation via Let's Encrypt in the Plesk admin panel Tutorials /Plesk

In this tutorial, we will show you how to install the security/SSL (Secure Sockets Layer certificate) certificate using Let's Encrypt in the Plesk administration panel.

1

by Florin Petran

Views 703

Updated 7 months ago

Published on 29/05/2019

Redirecting the site from HTTP to the secure HTTPS version from the Plesk administration panel.Tutorials /Plesk

In this tutorial, we will present the necessary steps to implement a 301 redirect from HTTP to HTTPS from the Plesk control panel.

1

by Alexandru Jurca

Views 487

Updated 2 years ago

Published on 07/02/2020

Remote MySQL activation from the Hostico client account.Tutorials /Commercial

Activating remote MySQL access in your Hostico account is easy. Follow the steps to add IPs temporarily or permanently and enjoy dedicated support.

by Mark Dohi

Views 781

Updated 7 months ago

Published on 19/04/2022

Changing the root directory for a site in the Plesk administration panel Tutorials /Plesk

In this article, we will present the necessary steps to change the root directory of a site (the path/folder from where it is loaded)

by Alexandru Jurca

Views 635

Updated 7 months ago

Published on 07/02/2020