Can we enabled ICAP with modsecurity?
21 views
Skip to first unread message
Blason R
Mar 12, 2025, 7:19:09 AMMar 12
to ModSecurity Core Rule Set project
Hi Team,
I am currently utilizing a Check Point firewall that operates as an
ICAP server, alongside an Nginx reverse proxy equipped with
ModSecurity. I am interested in understanding whether it is possible
to activate the ICAP client through ModSecurity, thereby enabling the
scanning of threats or files via the ICAP server.
I am currently utilizing a Check Point firewall that operates as an
ICAP server, alongside an Nginx reverse proxy equipped with
ModSecurity. I am interested in understanding whether it is possible
to activate the ICAP client through ModSecurity, thereby enabling the
scanning of threats or files via the ICAP server.
Andrew Howe
Mar 17, 2025, 9:01:00 PMMar 17
to Blason R, ModSecurity Core Rule Set project
Hi Blason,
> ...possible to activate the ICAP client...
Is that to say you *have* a specific ICAP client/executable available?
Or an ICAP module for nginx? (Please excuse my lack of experience with
using ICAP.)
Or is your question more like 'is there a ModSecurity ICAP
client/integration available'?
I wonder if this might be possible to achieve with some Lua scripting.
But maybe that would simply be too difficult to accomplish.
Thanks,
Andrew
> --
> You received this message because you are subscribed to the Google Groups "ModSecurity Core Rule Set project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to modsecurity-core-rule-...@owasp.org.
> To view this discussion visit https://groups.google.com/a/owasp.org/d/msgid/modsecurity-core-rule-set-project/CAPPXLT8bzRSmV9%3DDvZgcQ%3DShEekDjPjD5xsV79OxUi92nSyo3w%40mail.gmail.com.
> ...possible to activate the ICAP client...
Is that to say you *have* a specific ICAP client/executable available?
Or an ICAP module for nginx? (Please excuse my lack of experience with
using ICAP.)
Or is your question more like 'is there a ModSecurity ICAP
client/integration available'?
I wonder if this might be possible to achieve with some Lua scripting.
But maybe that would simply be too difficult to accomplish.
Thanks,
Andrew
> You received this message because you are subscribed to the Google Groups "ModSecurity Core Rule Set project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to modsecurity-core-rule-...@owasp.org.
> To view this discussion visit https://groups.google.com/a/owasp.org/d/msgid/modsecurity-core-rule-set-project/CAPPXLT8bzRSmV9%3DDvZgcQ%3DShEekDjPjD5xsV79OxUi92nSyo3w%40mail.gmail.com.
Reply all
Reply to author
Forward
0 new messages