Web Application Firewall
AppXcel’s automated web application firewall (WAF) is based on Imperva’s award-winning web application security software. This add-on AppXcel™ service provides unified protection against known and unknown web application attacks, worms, platform exploits, and network attacks, including
- Brute force login
- Buffer overflow
- Command
- Cookie poisoning
- Cross-site scripting
- Data destruction
- Data theft
- Denial of service
- Directory traversal
- Form field tampering
- Identify theft
- Illegal encoding
|
- Known worms
- Malicious encoding
- Malicious robots
- Parameter tamper
- Patient and corporate espionage
- Phishing
- Scanning
- Session hijacking
- SQL injection
- Web, HTTPS and XML application attacks
- Web server and operating systems attacks
- Zero day web worms
|
Radware’s APSolute open service architecture provides granular and seamless scalability of WAF services running on AppXcel with no service interruption. Protection against attacks is provided without manual configuration or tuning, ensuring up-to-date and accurate protection and with no changes to the data center infrastructure.
Product Highlights
- Activate WAF easily with a software license key
- Seamlessly deploy without making any network architecture, router or server changes
- Gain complete application security with modifying web applications or changing authentication schemes
- Eliminate need for manual tuning through behavioral-based analysis and automatic adaptation
to application changes
- Reduce TCO by decreasing ongoing policy maintenance
- Scale cost effectively to accommodate any scanning capacity requirements
- Identify faulty WAF service with real-time failure bypassing
Technical Specifications
| Features |
AppXcel 4000 |
AppXcel 8000 |
| Platform |
XS2 |
XS2 |
| SSL Transactions/second |
4,000 |
7,300 |
| Concurrent SSL Connections |
20,000 |
50,000 |
| Throughput HTTP |
320 Mbps |
| Throughput HTTPS |
180 Mbps |
| Memory |
4 GB |
| Network Interfaces |
One of these three options
- 2× 10/100/1000 BaseTX ports
- 1× 10/100/1000 BaseTX port and 1× 1000BaseSX port
- RS-232C connector
|
| Dimensions and Weight |
- Width: 430.0 mm (16.93 in.)
- Depth: 504.7 mm (19.87 in.)
- Height: 43.7 mm (1.72 in.)
- Weight: 7.25 kg (15.87 lbs)
- EIA rack or standalone: 482.6 mm (19 in.)
|
| Environmental |
- Operating temperature: 0°C to 40°C (32°F to 104°F)
- Relative humidity: 5% to 95% non-condensing
|
| Power |
- Auto-range supply: 100 V to 250 V
- DC: 50 Hz to 60 Hz
|
| Intrusion Prevention System (IPS) |
Integrated Snort-based signature detection mechanism provides IPS protection against known infrastructure attacks targeting vulnerabilities in commercial web server, application server and operation system software (e.g., IIS, Apache, Windows 2000). Regular signature updates ensure protection against latest exploits. |