This example runs ModSecurity in a container using the official OWASP Docker image.
See Docker installation: Docker
The official ModSecurity Docker images are published by OWASP:
owasp/modsecurity:latestowasp/modsecurity-crs:latest# Pull the official ModSecurity image with CRS
docker pull owasp/modsecurity-crs:latest
# Run ModSecurity WAF
docker run -d \
--name modsecurity \
-p 80:80 \
-p 443:443 \
owasp/modsecurity-crs:latest
version: '3.8'
services:
modsecurity:
image: owasp/modsecurity-crs:latest
container_name: modsecurity
ports:
- "80:80"
- "443:443"
volumes:
- ./modsecurity-config:/etc/modsecurity
- ./logs:/var/log/modsecurity
restart: unless-stopped
webapp:
image: nginx:alpine
container_name: webapp
expose:
- "80"
ModSecurity configuration files are located in /etc/modsecurity:
modsecurity.conf - Main configuration filecrs-setup.conf - Core Rule Set configurationrules/ - Directory containing CRS rules