From 7fc4b208fba437a2aff8ab39250032641a856684 Mon Sep 17 00:00:00 2001
From: brenosilva <breno.silva@gmail.com>
Date: Fri, 25 Jan 2013 11:13:20 -0800
Subject: [PATCH] Updated Reference Manual (mediawiki)

---
 Reference-Manual.mediawiki | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)

diff --git a/Reference-Manual.mediawiki b/Reference-Manual.mediawiki
index bfb7a5d..2ef3e05 100644
--- a/Reference-Manual.mediawiki
+++ b/Reference-Manual.mediawiki
@@ -193,6 +193,29 @@ The first step in obtaining nginx server with built-in ModSecurity module is bui
 ~/nginx-1.2.0$ sudo make install
 </pre>
 The last command performs server installation on the local machine, which can be either customized or omitted with built binaries packaged or moved to alternative server.
+=== Configuration Steps ===
+The ModSecurity configuration file must be linked in nginx.conf file using the following directives defined by nginx’s ModSecurity extension module:
+
+location / {
+           ModSecurityEnabled on;
+           ModSecurityConfig modsecurity.conf;
+           ModSecurityPass @backend;
+       }
+
+location @backend {
+           proxy_pass http://localhost:8011;
+           proxy_read_timeout 180s;
+       }
+This configures ModSecurity as an Nginx request handler. The updated request flow is now:
+request -> modsecurity handler -> backend
+You will need to modify the @backend definition to point to your correct back-end web application that Nginx is proxying to.
+Starting with ModSecurity 2.7.2 the ModSecurityPass option was removed. So the config file looks like:
+location / {
+           ModSecurityEnabled on;
+           ModSecurityConfig modsecurity.conf;
+           proxy_pass http://localhost:8011;
+           proxy_read_timeout 180s
+       }
 = Installation for Microsoft IIS =
 The source code of ModSecurity’s IIS components is fully published and the binary building process is described (see mod_security/iis/winbuild/howto.txt). For quick installation it is highly recommended to use standard MSI installer available from SourceForge files repository of ModSecurity project or use binary package and follow the manual installation steps.
 == Manually Installing and Troubleshooting Setup of ModSecurity Module on IIS ==