• Answers
  • Web

How Web Application Firewall works? For example ...

How Web Application Firewall works?

For example: f5, imperva and so on...


Answer this question
Share Send to a friend Watch Report
 
 

3 Posted Answers
Order by

 
1 answer
1 helpful answer

The definition in the WASC glossary (http://www.webappsec.org/projects/glossary/) states the following for a web application firewall (WAF):

An intermediary device, sitting between a web-client and a web server, analyzing OSI Layer-7 messages for violations in the programmed security policy. A web application firewall is used as a security device protecting the web server from attack.

There are many ways that WAFs can operate.  The WASC Web Application Firewall Evaluation Criteria (WAFEC)(http://www.webappsec.org/projects/wafec/) provides a framework that describes the various aspects of following:

  • Section 1 - Deployment Architecture
  • Section 2 - HTTP and HTML Support
  • Section 3 - Detection Techniques
  • Section 4 - Protection Techniques
  • Section 5 - Logging
  • Section 6 - Reporting
  • Section 7 - Management
  • Section 8 - Performance
  • Section 9 - XML

Anyone interested in possibly using a WAF should review WAFEC so that they fully understand all of the possibly options.
Posted 2008-02-12T22:29:13Z
Helpful?(4)
Rated as Best Answer
 
253 answers
5 helpful answers

Step 1 Choose a software firewall for best results with a small home Internet network. Windows Firewall is a the most common firewall available and is included in newer versions of the Windows operating system, such as Windows XP and Windows Vista.

Step 2 Open the Window's System Control panel to access the firewall settings user interface. Click on the "Start" button followed by "Control Panel" and then click on the Window's Firewall icon in the user interface.

Step 3 Click on the option to "Allow Exceptions" to communicate through the Window's Firewall. There is a drop down box that will show all of the programs available.

Step 4 Check the boxes next to the application needing to have the exception made to allow it full access to the Internet.

Step 5 Restart the computer after allowing the application permission to access the Internet. The restarting process will change all of the computer's software settings in the computer's registry settings.

For More Information visit http://windows7.iyogi.net/
Posted 2009-11-06T20:36:41Z
Helpful?(0)
Rated #2 out of 3
 

try the trial version and you can know how they works

Or you can check demos of those web application firewalls http://www.dbappsecurity.com/waf.html 
Posted 2009-11-25T07:01:15Z
Helpful?(0)
Rated #3 out of 3

Sign in to participate

Got an answer for gagu? Would you like to comment on the posted answers, or vote for the one which you think is the best?

Sign up for a free account, or sign in (if you're already a member).

Explore Related Questions

Other people asked questions on similar topics, check out the answers they received:


Q:

Secure ajax applications

What are some things to consider when writing secure web applications in AJAX?
Submitted by akirson   3 years ago.
  • 4 answers
  • viewed 800 times
Last answer posted 3 days ago by Security09


Q:

How test a web application using Test Complete?

how test a web application using Test Complete?
Submitted by nitha   2 years ago.
  • 1 answer
  • viewed 1272 times
Last answer posted 1 year ago by Eran


Q:

Best web 2.0 application for building community driven

What is the best web 2.0 application for building community driven websites such as yedda?
Submitted by frhs00   3 years ago.
  • 3 answers
  • viewed 569 times
Last answer posted 3 years ago by dahowlett



» More...

Feed - Subscribe to changes to this Q&A Blog
ADVERTISEMENT
  • Answers
  • Web
Copyright © 2006-2009, Yedda Inc. and respective copyright owners · CC License