Setup overview for WAF

Stay organized with collections Save and categorize content based on your preferences.

This document provides a high-level overview of setting up reCAPTCHA at the web application firewall (WAF) layer.

Setting up reCAPTCHA at the WAF layer involves the following steps:

1. Choose a WAF service provider.
2. Choose the WAF features for your integration.
3. Create a reCAPTCHA key for each selected feature.

4. Install and configure the reCAPTCHA WAF plugin on your WAF service provider.

   • Integrate with Google Cloud Armor for websites.
   • Integrate with Google Cloud Armor for mobile applications.
   • Integrate with Fastly.
   • Integrate with Cloudflare.

5. Create policy rules to enable protections on selected web pages and paths.

   • For Google Cloud Armor integrations, use reCAPTCHA token attributes in Google Cloud Armor security policies.
   • For Cloudflare and Fastly integrations, use reCAPTCHA Firewall Policy rules.

What's next

• Choose the WAF features for your integration.