What is a Web application firewall

Webshould bewith fire protectionWallis setWebAnti-Protection, netpageWarrantyProtection,LoadBalanced,should bewith deliveryin one of theWebOverall safety PreventionProtective Equipmenta piece ofProductionProducts .

Web firewall products deployed in front of the Web server, serial access, not only on the hardware performance requirements, and can not affect the WEB services, so ha function, bypass functionality is necessary, but also with load balancing, Web cache and other Web servers before the common product coordination deployment. -

Web - used fireproof Wall is a strong protection against web- specific intrusion mode , such as DDoS Defense ,SQL injection,XML injection,XSS, and more.

the function of the Web should use the fireproof Wall

1, Proactive Defense , Intelligent analysis of application defects, shielding malicious requests, prevent web tampering, blocking application attacks, all-round protection of Web applications.

2, the intelligent response, rapid p2dr modeling, fuzzy induction and positioning attacks, to prevent the spread of risk, the elimination of "security incidents" in the bud.

3, post-mortem behavior audit, deep excavation access behavior, analysis of attack data, improve the value of the application, to assess the security situation to provide detailed reports.

4, customer-oriented application acceleration, improve system performance, improve the Web Access experience.

5, process-oriented application control, refinement of access behavior, strengthen the application of service capabilities.

6, service-oriented load Balancing , expand service capacity, adapt to the rapid growth of business scale.

Features of the Web application firewall

Anomaly Detection Protocol

The Web application firewall detects HTTP requests for exceptions and rejects requests that do not conform to HTTP standards. Also, it can only allow partial options for the HTTP protocol to pass, thereby reducing the scope of the attack. Even some Web application firewalls can strictly limit the options that are too loose or not fully developed in the HTTP protocol.

Enhanced input validation

enhanced input verification can effectively prevent web page tampering, information leakage, Trojan horse implantation and other malicious network intrusion behavior. This reduces the likelihood of the Web server being attacked.

Timely patches

Patching Web Security Vulnerability is the biggest headache for Web application developers, and no one will know what kind of vulnerabilities the next second will bring to the web. Now the WAF can do the job for us--as long as there is a comprehensive vulnerability information WAF can block this vulnerability in less than one hours.

What is a Web application firewall