Each virtual service can have one WAF Policy attached to it. This topic details the steps to configure WAF for a virtual service.

To add a WAF Policy to an existing virtual service.

  1. Navigate to Applications > Virtual Services.

  2. Select the virtual service and click edit icon.

  3. In the Profiles section, select an existing policy from the WAF Policy drop-down menu or create a new one.

  4. Save the configuration.


Attaching a WAF Policy to a virtual service immediately puts that policy into effect. If the policy is in Enforcement mode, it starts blocking requests. For new applications and untuned WAF policies, we recommend running the policy initially only in Detection mode.

Navigate to Applications > Dashboard to verify if WAF is enabled on the virtual service. If enabled, you will notice a halo and a shield on the attached virtual service object.