Web Application Firewall

€49.99

No tax

Block IP/CIDR/country/bad-bots, rate-limit abuse, protect the BO login and block attack patterns (SQLi/XSS/LFI) with an anti-lockout whitelist.

Optional annual renewal: €7.99/year (updates and support).

A lightweight application-layer firewall running on the actionDispatcher hook, as early as possible.

IP / CIDR blocking (IPv4+IPv6) with a whitelist that bypasses the entire firewall
Country blocking via CDN header (Cloudflare CF-IPCountry) or optional MaxMind database
Bad-bot / user-agent blocking and per-IP rate limiting with temporary block
Back-office login protection (per IP/username lockout) and lockdown mode
Attack-pattern blocking (SQLi/XSS/LFI/path traversal/probing) with a URI whitelist
Blocked-requests log (IP, reason, URI, UA, country) with CSV export and automatic anti-lockout

Compatibility: PrestaShop 1.6 / 1.7 / 8 / 9. Multilingual (IT + EN included). No core modification: the module uninstalls cleanly.

Support: updates and assistance included. Contact: prestashop@cavallini.net

🖥️ Try this module live

Open a real PrestaShop demo back office and configure Web Application Firewall yourself.

User guide (PDF, IT)

Module user guide in Italian (PDF).

User guide (PDF, EN)

Module user guide in English (PDF).

Version	Date	Changes
1.0.0	2026-06-14	First public release. - Web application firewall: blocks common attack patterns and bad bots. - IP and rule management from the back office.