Fusion ADC Web Application Firewall (WAF)

The Web Application Firewall (WAF) is available as a Docker container for installation within our Fusion ADC, or as a stand-alone software based appliance. The purpose of the WAF add-on is to enhance the security of the web based application servers sitting in the ADC’s green zone.

Other languages:
Deutsch Deu · Français Fra

Secured Against Application Attacks

Fusion ADC WAF features highly effective Layer 7 Protection for web applications. The WAF is built using industry leading, hardened firewall technology and runs within the ADC at the application layer helping to fill the security gap that traditional firewalls cannot address. To eliminate application vulnerabilities and provide the necessary protection against attacks, Fusion ADC Web Application Control (WAF) incorporates a range of leading and highly critical key features including:

Features

Cross Site Scripting (XSS)

SQL Injection

DOS

Session Hijacking

Data Loss Prevention

Local File Inclusion

Remote File Execution

HTTP Protocol Violations

Shellshock

Session Fixation

Scanner Detection

Metadata / Error Leakages

Project Honey Pot Blacklist

GEO IP Country Blocking

Fusion ADC WAF also satisfies PCI-DSS and OWASP application firewall requirements and uses containerisation technology to isolate each application firewall instance. It can be used to run multiple applications or implement a multi-layered security architecture and is both fast and easy to deploy and configure. Fusion ADC WAF is available for virtual, hardware and cloud load balancer deployments

Complete Web Application Control

The WAF controls the input, output and access to and from an application by inspecting the HTTP conversation between the application and clients according to a set of rules. These rules cover common attacks such as cross-site scripting (XSS), SQL injection, session hijacking and buffer overflows which network firewalls and intrusion detection systems are often not capable of doing.

The rules may be also used to enforce security policies required by PCI DSS or other security standards in order to block leakage of sensitive information like credit card numbers. By customising the rules to your application, many attacks can be identified and blocked. A Set of PCI DSS rules come as standard to the product.

For further information about Fusion ADC WAF simply contact us or download the above data sheet.