ANS Documentation

Improve This Doc
  • Cloud
  • Domains and DNS management
  • Backup and High Availability
  • eCommerce Stacks
  • Security
    • DDoSX®
    • Web Application Firewall
      • What is a Web Application Firewall?
      • What kind of attacks does a WAF prevent?
      • Getting started with a Web Application Firewall (hardware-based)
      • Managing a Web Application Firewall in-life (hardware-based)
      • Troubleshooting (hardware-based WAFs)
    • Threat Monitoring and Threat Response
    • McAfee Antivirus
    • Vulnerability Scans
    • ANS MDR
    • Keeping Magento secure
    • Keeping WordPress secure
    • Brute Force Attacks
    • CryptoLocker
    • Dirty COW
    • The Logjam attack
    • Meltdown and Spectre
    • Memcached security concerns and reflection/amplification DDoS attacks
    • Wana Decryptor / Wana Decrypt0r 2.0 / WannaCry
    • Log4J Vulnerability
    • Polkit Security Vulnerability CVE-2021-4034
    • CVE-2022-0847 - Dirty Pipe Vulnerability
  • Email
  • Monitoring and usage management
  • Networking
  • Operating systems
  • Webcelerator
  • MyUKFast
  • Home >
  • Security >
  • Web Application Firewall >
  • What is a Web Application Firewall?

What is a Web Application Firewall?¶

A Web Application Firewall (WAF) is a piece of software installed on a proxy that is used to filter, control, and analyse traffic sent to and from a web application e.g. a website. On a simple level a WAF is a firewall that has been specifically configured from the ground up to cover web applications, as opposed to a standard firewall that works based on access lists, input & output, and access controls.

UKFast WAFs follow the good security practice of “block everything, only allow what is necessary”. This approach ensures the WAF detects and prevents as many attacks as possible, and secures your application accordingly.

How does a WAF work?¶

A WAF operates by following specially built rules and rulesets. Starting from a standard ruleset, UKFast can configure these specifically for your solution and applications to ensure that all traffic to the monitored web applications are checked. If traffic matches the ruleset it will be allowed through, otherwise it will be dropped immediately and the potential attack will be prevented.

However, every web application can be different and have specific methods of inputting data. Given this, it is possible for some legitimate traffic to get caught by the WAF filter and dropped. To mitigate this risk on an ongoing basis, UKFast has a dedicated analyst team who will work with you to advise on ruleset updates and tweaks for your WAF. Often this team will spot problems and correct them before it becomes apparent to customers, however if you do believe your WAF is not functioning optimally then please contact support, raise a ticket via MyUKFast or call your UKFast account manager.

Further information relating to WAF on DDoSX can be found here

Next Article > What kind of attacks does a WAF prevent?

  • Useful Links
  • SMB
  • Enterprise
  • Channel
  • Public Sector
  • ANS Data Centres
  • About ANS
  • Careers
  • Blog
  • Get in touch
  •  
  • Sales 0800 458 4545
  • Support 0800 230 0032
  • Get in touch

© ANS Group Limited | Terms and Conditions | Corporate Guidance | Sitemap
ANS Group Limited, registered in England and Wales, company registration number 03176761, registered office 1 Archway, Birley Fields, Manchester M15 5QJ