Totally agree. It's nice to have a WAF but the implementation is not convenient.
Here is what I think would be nice to have:
- Export a full WAF config and import to another server
- When an IP is detected and recognized as fraudulent, being able to blacklist the whole network, not just the IP (without needing to check via a WHOIS and enter the network manually)
- Being able to blacklist entire continents
- Being able to configure once and push to all servers
Totally agree. It's nice to have a WAF but the implementation is not convenient.
Here is what I think would be nice to have:
- Export a full WAF config and import to another server
- When an IP is detected and recognized as fraudulent, being able to blacklist the whole network, not just the IP (without needing to check via a WHOIS and enter the network manually)
- Being able to blacklist entire continents
- Being able to configure once and push to all servers