modsecurity on;
modsecurity_rules_file /etc/nginx/modsecurity-rules.conf;