Oracle Cloud Infrastructure Documentation

Creating a Web Application Firewall Policy

Create a web application firewall (WAF) policy.

When you create a policy, you're initially only creating the policy framework. After the policy is created, you build it out using the various resources available. Typically this includes providing basic, access control, rate limiting, and protection options as needed, and then select a firewall as the WAF policy enforcement point. For more information, see Before You Begin.
    1. On the Policies list page, select Create WAF policy. If you need help finding the list page or the policy, see Listing Web Application Firewall Policies.
      The Create policies panel opens.
    2. Enter the following information:
      • Name: Enter a name for the WAF policy, or use the default name.
      • Compartment: Select the compartment to contain the WAF policy.

    Tags

    If you have permissions to create a resource, then you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. For more information about tagging, see Resource Tags. If you're not sure whether to apply tags, skip this option or ask an administrator. You can apply tags later.

    Select Create.

    The policy you created appears in the policy list. Select the policy from the list. The policy's details page opens.

    Configure the following resources:

    Actions

    For information on actions, see Actions.

    Access Control Rules

    For information on access control rules, see Access Controls.

    Firewall

    For information on rate limiting rules, see Firewalls

  • Use the oci waf web-app-firewall-policy create command and required parameters to create a web application firewall policy:

    oci waf web-app-firewall-policy create --compartment-id compartment_ocid [OPTIONS]

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

  • Run the CreateWebAppFirewallPolicy operation to create a web application firewall policy.