We are excited to introduce the ability to personalize HTTP response codes for detected security violations. With this enhancement, you can now configure specific HTTP status codes to align with your organization's policies and integration requirements. This flexibility helps streamline incident management, improve compliance reporting, and enhance communication with upstream systems.

Introducing the Signature Filtering feature, designed to help security administrators customize traffic inspection by including or excluding specific signature categories. This feature enhances performance and scalability by focusing on relevant security signatures, and ignoring unnecessary ones. Administrators can configure filters based on attack types, server OS, frameworks, or signature dates, ensuring tailored protection for your environment. Signature Filtering simplifies the management of large-scale security events while optimizing detection accuracy.

Access logs can now be limited to requests for a specific hostname. This is configured in the controller deployment using the --enforcer-access-log-hostname-filter command-line argument. Only one hostname can be specified, and it must exactly match the hostname in the request. This feature works independently or in combination with the
--enforcer-access-log-rate argument for enhanced log control.