diff --git a/nginx/nginx.conf b/nginx/nginx.conf
index 15e8c4e..5738264 100644
--- a/nginx/nginx.conf
+++ b/nginx/nginx.conf
@@ -90,7 +90,7 @@ http {
     limit_req_zone $limit_key zone=global_limit:20m rate=10r/s;
 
     # --- ATIVAÇÃO GLOBAL DO WAF (MODSECURITY) ---
-    modsecurity off;
+    modsecurity on;
     modsecurity_rules_file /etc/nginx/modsecurity.conf;