WAF parameter allows to disable web attack firewall protection. This feature is mostly used for debugging process or in case you would like ruxy to manage TLS certificate management only. In general it is not advised to turn of web firewall protection feature.
To disable firewall protection feature:
Setting WAF to “false” doesn’t disable other ruxy features like AutoCert/ACME support. And in this case you can use ruxy as SSL certificate management for your site.