Question 1

How do I integrate teler-waf with the Gin framework?

Accepted Answer

Since teler-waf uses a standard net/http.Handler, you can wrap Gin's engine with it. Create a teler instance and use its handler as middleware in Gin's routing—check the examples directory for specific code.

Question 2

teler-waf vs Cloudflare WAF for Go apps?

Accepted Answer

teler-waf is self-hosted and customizable within your Go application, ideal for internal or on-premise use. Cloudflare WAF is cloud-based with broader DDoS protection but less control over rules. Choose based on hosting needs and customization.

Question 3

Does teler-waf protect against DDoS attacks?

Accepted Answer

No, teler-waf focuses on application-layer threats like XSS and SQL injection, not volumetric DDoS attacks. You'll need additional infrastructure or services for network-level protection.

Question 4

How to create custom rules for specific attack patterns?

Accepted Answer

Use the Customs option with regex patterns or DSL expressions in the teler.Options struct. The README provides examples, and you can test rules in the teler WAF playground for validation.

Question 5

What is the memory impact with the InMemory option?

Accepted Answer

Enabling InMemory loads threat datasets into RAM, which improves speed but increases memory usage based on dataset size. It's useful for distroless containers but trade-offs resource consumption.

Question 6

Can teler-waf be used in Kubernetes deployments?

Accepted Answer

Yes, it can be deployed as a sidecar or integrated into Go microservices in Kubernetes. Ensure gcc is available in the container image for compilation, and consider resource limits due to performance overhead.

teler-waf

What is teler-waf?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions