{"id":847,"date":"2025-06-10T20:46:12","date_gmt":"2025-06-10T18:46:12","guid":{"rendered":"https:\/\/blog.koeckeis-fresel.net\/?p=847"},"modified":"2025-06-11T07:29:04","modified_gmt":"2025-06-11T05:29:04","slug":"install-safeline-waf-on-hetzner-vps-even-faster-with-cloud-init-script","status":"publish","type":"post","link":"https:\/\/blog.koeckeis-fresel.net\/?p=847","title":{"rendered":"Install SafeLine WAF on Hetzner VPS even faster with cloud-init script on Debian 12"},"content":{"rendered":"\n

As you know my servers are hosted at hetzner.de – use this Link<\/a> to get a 20\u20ac start credit for your first servers.<\/p>\n\n\n\n

Now we will install a new virtual server with preparations for SafeLine WAF on Hetzner server.<\/p>\n\n\n\n

Preparations<\/h2>\n\n\n\n

Select Debian 12 as your system!<\/p>\n\n\n\n

Follow the steps in the Article How to install a virtual private server hosted by hetzner.de<\/a><\/p>\n\n\n\n

Cloud-Init<\/h2>\n\n\n\n

Use the content of the following script cloudinit-debian-safeline.yaml hosted on github (Link)<\/a><\/p>\n\n\n\n

After the installation the server reboots once and is ready for your SafeLine installation.<\/p>\n\n\n\n

Install SafeLine WAF<\/h2>\n\n\n\n

Just log in as root using SSH and start the SafeLine installer using this command line:<\/p>\n\n\n\n

bash -c \"$(curl -fsSLk https:\/\/waf.chaitin.com\/release\/latest\/manager.sh)\" -- --en<\/code><\/pre>\n\n\n\n
Now you are ready to use your SafeLine WAF – just connect to it using the default port 9443 and use the credentials the installer showed you. <\/p>\n\n\n\n
If you want to reset the credentials use this command line:<\/p>\n\n\n\n
docker exec safeline-mgt resetadmin<\/code><\/pre>\n\n\n\n
5% discount on your SafeLine order<\/h2>\n\n\n\n
Use the following referral code to get a 5% discount on your order<\/p>\n\n\n\n
62LCXJ3GABSUIEU5JTIT344S<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"
As you know my servers are hosted at hetzner.de – use this Link to get a 20\u20ac start credit for your first servers. Now we will install a new virtual server with preparations for SafeLine WAF on Hetzner server. Preparations Select Debian 12 as your system! Follow the steps in the Article How to install […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[8,16,19,2,27,3,10],"tags":[41,39],"class_list":["post-847","post","type-post","status-publish","format-standard","hentry","category-debian","category-deployment","category-deployment-linux","category-http","category-linux","category-tls","category-waf","tag-hetzner","tag-waf"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":860,"url":"https:\/\/blog.koeckeis-fresel.net\/?p=860","url_meta":{"origin":847,"position":0},"title":"Deploy BunkerWeb within minutes (docker on debian 12)","author":"Michal","date":"2025-06-20","format":false,"excerpt":"As you know my servers are hosted at hetzner.de - use this Link to get a 20\u20ac start credit for your first servers. Now we will install a new virtual server with preparations for BunkerWeb WAF on Hetzner server. Preparations Select Debian 12 as your system! Use the FQDN as\u2026","rel":"","context":"In "debian"","block_context":{"text":"debian","link":"https:\/\/blog.koeckeis-fresel.net\/?cat=8"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":838,"url":"https:\/\/blog.koeckeis-fresel.net\/?p=838","url_meta":{"origin":847,"position":1},"title":"How to install SafeLine WAF within minutes","author":"Michal","date":"2025-06-09","format":false,"excerpt":"If you want to install the SafeLine WAF, here are some scripts to speed up your deployment. You must run the script as root as we need to install some packages from the official docker repository. I know - the official SafeLine installer already will install the needed packages. But\u2026","rel":"","context":"In "debian"","block_context":{"text":"debian","link":"https:\/\/blog.koeckeis-fresel.net\/?cat=8"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":719,"url":"https:\/\/blog.koeckeis-fresel.net\/?p=719","url_meta":{"origin":847,"position":2},"title":"How to install a virtual private server hosted by hetzner.de (get 20\u20ac credit for your first server)","author":"Michal","date":"2025-06-08","format":false,"excerpt":"this is an installation instruction to set up your virtual private server at hetzner.de","rel":"","context":"In "deployment"","block_context":{"text":"deployment","link":"https:\/\/blog.koeckeis-fresel.net\/?cat=16"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":792,"url":"https:\/\/blog.koeckeis-fresel.net\/?p=792","url_meta":{"origin":847,"position":3},"title":"What is a Web Application Firewall (WAF)","author":"Michal","date":"2025-06-09","format":false,"excerpt":"What is a WAF A Web Application Firewall (WAF) is a security tool that monitors, filters, and blocks HTTP\/HTTPS traffic between web applications and the internet. It acts as a protective barrier specifically designed to defend web applications from various cyber attacks. When should I use a WAF - is\u2026","rel":"","context":"In "http"","block_context":{"text":"http","link":"https:\/\/blog.koeckeis-fresel.net\/?cat=2"},"img":{"alt_text":"Traffic flow from client to protected server","src":"https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/WAF-traffic-scaled.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/WAF-traffic-scaled.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/WAF-traffic-scaled.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/WAF-traffic-scaled.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/WAF-traffic-scaled.png?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/WAF-traffic-scaled.png?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":880,"url":"https:\/\/blog.koeckeis-fresel.net\/?p=880","url_meta":{"origin":847,"position":4},"title":"HTTPS Certificate Validation: Overview","author":"Michal","date":"2025-07-26","format":false,"excerpt":"When you visit a secure website (HTTPS), your browser needs to verify that the website's security certificate is legitimate and hasn't been compromised. This is like checking if an ID card is still valid and hasn't been reported stolen. There are three main methods websites use to prove their certificates\u2026","rel":"","context":"In "general"","block_context":{"text":"general","link":"https:\/\/blog.koeckeis-fresel.net\/?cat=1"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/comparison_table-1.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/comparison_table-1.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.koeckeis-fresel.net\/wp-content\/uploads\/comparison_table-1.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=\/wp\/v2\/posts\/847","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=847"}],"version-history":[{"count":9,"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=\/wp\/v2\/posts\/847\/revisions"}],"predecessor-version":[{"id":858,"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=\/wp\/v2\/posts\/847\/revisions\/858"}],"wp:attachment":[{"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=847"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=847"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.koeckeis-fresel.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=847"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}