Refined Web security protection

NetentSec’s WAF application firewall can safeguard seven kinds of threat from Web attack. Refined rule configuration gives the fullest play to the function of security protection to effectively face the threat of OWASP Top10 and its varieties.

 

 

  

 

 

Complete solution of web page integrity assurance, support Linux, BSD and Windows

 

The Web firewall centers on managing and controlling the endpoint of each website and provides monitoring, synchronism and release.

Based on folder driving stage protection technology and event trigger mechanism, it ensures that systematic resources will not be wasted.

Link with WAF

Website tamper-resistant (endpoint technology) links with WAF to block Web’s threat.

After adopting the folder driving stage protection technology, every time users visit any protected website, the Web server will conduct a thorough checking before sending to guarantee the authenticity of the website, by which the possibility of visiting a distorted web page can be completely eradicated.

Support Windows 2000/xp/2003/2008(64), the web page of Linux/BSD is tamper-resistant.

 

         

  

Professional DDOS Protection Engine makes the server safer  

Having adopted the combination of active surveillance and passive tracking, the anti-D.DoS attack of NetentSec’s WAF firewall is able to recognize various D.DoS attack, uses its own blocking-up and can efficiently accomplish the filtration and defense against D.DoS attack. Aimed at usual attack techniques, it combines various protection means so that it can effectively block the attack to enable the server to furnish normal service and prevent from the attack of CC and SynFlood.   

 

 

 

 

HTTPS unload/accelerate

As the following picture, aimed at SSL encryption application, WAF provides HTTPS unloading and accelerating application in line with business model, in order to ensure the security and reliability of the server.

 

  

 

HTTPS gatekeeper application

As SSL is widely used and can provide a safe and reliable HTTP service, it is put to use a lot. However, some clients fail to offer HTTPS encryption transmission because of conditional limitation, thus confronted with higher risks. HTTPS gatekeeper service, facing this kind of model, developed by WAF, is able to offer seamless HTTPS service to protect the client data to the greatest extent. As shown below.

  

  

 

Active diagnose of URL injection

URL injection, deemed as a relatively private kind of webpage tampering, with the ultimate goal of stealing the sensitive information in the Client, such as accounts and passwords, may reduce the client-side host to the dorking of attackers. Once the Web server becomes the puppet and accomplice to spread wooden horse, it will exert a damaging influence on the public credibility of the website.

NetentSec WAF is equipped with the injection checking, takes a complete inspection of every webpage to see if it is implanted with malicious code and warns its users timely.

 

Web scanning support

NetentSec WAF provides Web vulnerability scanning system to conduct safety check-up for the sake of prior prevention and disposition.

Three-dimensional protection, security protection from top to bottom.

Build a multi-dimensional protection system with four layers Web security scanning and check-up including the network layer and application layer, webpage anti-tamper, Web security scanning interaction, D.DoS of the network and application layer and also establish a three-dimensional protection network.

 

  

Web load balancing, virtual host support, satisfy IDC application and catenet  

The sharp increase of network visit is the cause of rapid increase of network bottleneck, leading to the need of load balancing for the existing servers. It is necessary to have a server load balancing equipment to ensure the equal distribution of load and shunt clients reasonably. It lies between the server and the user side, playing the role of an intelligent director. It distributes load on the basis of the present working condition and capacity of the server to make the whole system respond to clients more efficiently. Established upon the existing network structure, it offers a cheaper and more efficient way to expand the server bandwidth and handling capacity strengthens the network data handling capacity and enhances its flexibility and usability. Its main tasks are: to solve the network congestion, to provide nearby service and to realize the independence of geographic position; to better the visit quality for users; to increase the response speed of the server; to advance the utilization ratio of the server and other resources; to avoid the single point failure in the key position.

Five load-balancing algorithm support and the design model of layered architecture separate the network topology and application security, so as to ease the burden of administrators greatly.

On the aspect of network access, NetentSec WAF supports link aggregation and VLAN, which really meets the usage of large-scale network.

 

  

 

 

Dual operating system, dual HA, higher reliability

With the NOS unique dual operating system driving model, it ensures the system to upgrade the rule base, version repository and core engine online smoothly and avoids the possible occurrence of suspending the client network.

Various deployment models, adapt itself to the clients' topological changes.

NetentSec WAF provides a transparent, route and mixed work pattern, for the convenience of flexible deployment.