Configure the UTM WAF

Now that you have configured the internal load balancer you can configure the UTM Webserver Protection module so that it listens for HTTP traffic and, after scanning, sends it to the internal ELB for distribution.

To do so, proceed as follows:

  1. Log in to the controller UTM and navigate to Webserver Protection > Web Application Firewall.

  2. Click on New Virtual Webserver and make the following settings.

  3. Click Save.

  4. Enable the new Virtual Webserver by clicking the toggle switch.

    The toggle switch turns green.

    Note – To the right of the Real Webservers text you’ll see the status of the new internal ELB DNS object you created. It should change to green as shown below in a few moments. If it does not, check your settings as Sophos UTM is not able to resolve the DNS name used.