SonicWallSMA8.6WebApplicationFirewallFeatureGuide
Contents
1
2
DocumentScope ................................ . . ..................................4
LicensingWebApplicationFirewall ............................
.............. . ..........5
Overview.........................
.............. . ..................................8
Whatis
WebApplicationFirewall?............... ..................... ................... 8
BenefitsofWebApplicationFirewall.....................................
................ 11
HowDoesWebApplicationFirewallWork?............... .............
............... ....11
HowareSignaturesUsedtoPreventAttacks? ........................
..................12
HowisCross‐SiteRequestForgeryPrevented? ............... ..........
................ 14
HowisInformationDisclosurePrevented?.. ..................... ......
............... 14
HowareBrokenAuthenticationAttacksPrevented?.............................
....... 15
HowareInsecureStorageandCommunicationsPrevented?.............................15
HowisAccesstoRestrictedURLsPrevented?
... ..................... .................. 15
HowareSlowlorisAttacksPrevented? ...
................................... ..........15
WhatTypeofPCICompliance
ReportsAreAvailable?................................. ..16
HowDoesCookieTamperingProtectionWork?......
.................................. 16
HowDoesApplicationProfilingWork?...........
.................................... 18
HowDoesRateLimitingforCustomRulesWork?......
................................. 19
SupportedPlatforms ...............
................................... ................ 20
ConfiguringWebApplicationFirewall ....................................... . . ....
.....21
ViewingandUpdatingWebApplicationFirewallStatus..................................... 21
ViewingStatus
andSynchronizingSignatures ................................... .. .....22
DownloadingaPCIComplianceReport
................... ..................... .. .....22
ConfiguringWebApplication
FirewallSettings ............................................. 23
EnablingWebApplication
FirewallandConfiguringGeneralSettings...................... 24
ConfiguringGlobal Exclusions ....................
................................... 25
ConfiguringIntrusionPreventionErrorPageSettings.........
........................... 26
ConfiguringCross‐SiteRequestForgeryProtectionSettings............ ....
.............. 27
ConfiguringCookieTampering P rotectionSettings.............. .................
....... 28
ConfiguringWebSiteCloaking.......................................
............... 29
ConfiguringInformationDisclosureProtection ...............................
.......... 30
ConfiguringSessionManagementSettings............... .....................
........ 31
ConfiguringWebApplicationFirewallSignatureActions . ..................... ..............
.32
EnablingPerformanceOptimization............................. .................
....33
ConfiguringSignatureBasedCustomHandlingand Exclusions........ .. .................. 33
RevertingaSignaturetoGlobalSettings....
..........................................35
RemovingaHostfromaPer‐SignatureExclusion
............... ........................35
DeterminingtheHostEntryforExclusions.....
............... ..................... .......35
ViewingtheHostEntryinaBookmark
................................................ 36
Viewingthe
HostEntryinanOffloadedApplication..................................... 37
ConfiguringCustomRulesandApplicationProfiling.
............... ........................38
ConfiguringApplicationProfiling........
............... ..................... ........40
Contents