https://www.youngju.dev/blog 천천히 올바르게. AI Researcher & DevOps Engineer Youngju's tech blog. GPU/CUDA, LLM, MLOps, Kubernetes AI workloads, distributed training, and data engineering. ko fjvbn2003@gmail.com (Youngju Kim) fjvbn2003@gmail.com (Youngju Kim) Sun, 14 Jun 2026 00:00:00 GMT https://www.youngju.dev/blog/kubernetes/2026-06-14-ingress-waf-modsecurity-coraza.en https://www.youngju.dev/blog/kubernetes/2026-06-14-ingress-waf-modsecurity-coraza.en A practical guide to applying a WAF at the Kubernetes Ingress layer. It covers the difference between legacy ModSecurity and its successor engine Coraza, ingress-nginx integration, OWASP CRS tuning and false-positive management, detection versus blocking mode, performance impact, and a comparison with dedicated WAFs. Sun, 14 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) ingresswafmodsecuritysecuritykubernetes https://www.youngju.dev/blog/kubernetes/2026-06-14-ingress-waf-modsecurity-coraza.ja https://www.youngju.dev/blog/kubernetes/2026-06-14-ingress-waf-modsecurity-coraza.ja Kubernetes の Ingress 層で WAF を適用する方法を解説します。レガシーの ModSecurity と後継エンジン Coraza の違い、ingress-nginx 統合設定、OWASP CRS のチューニングと誤検知の管理、検知モードと遮断モード、性能影響、専用 WAF との比較までを運用視点でまとめます。 Sun, 14 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) ingresswafmodsecuritysecuritykubernetes https://www.youngju.dev/blog/kubernetes/2026-06-14-ingress-waf-modsecurity-coraza https://www.youngju.dev/blog/kubernetes/2026-06-14-ingress-waf-modsecurity-coraza 쿠버네티스 Ingress 단에서 WAF를 적용하는 방법을 다룹니다. 레거시 ModSecurity와 후속 엔진 Coraza의 차이, ingress-nginx 통합 설정, OWASP CRS 튜닝과 오탐 관리, 탐지/차단 모드, 성능 영향과 전용 WAF 비교까지 운영 관점에서 정리합니다. Sun, 14 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) ingresswafmodsecuritysecuritykubernetes