The page has been translated by Gen AI.
Overview
Service Overview
WAF (Web Application Firewall) is a service that monitors website traffic to securely protect web applications. It quickly detects and analyzes HTTP and HTTPS‑based security threats that target website vulnerabilities.
Features
- Powerful Detection/Blocking: We monitor the HTTP and HTTPS traffic of web pages registered by the customer to detect hacker attack attempts in real time. We classify attacks such as SQL Injection, Cross-Site Scripting (XSS), Web Scan, and provide various defense features needed for web security to respond immediately to new web attack types.
- Stable web service operation support: We address new security threats through web firewall signature patterns and firmware updates. We detect hacker attempts, including emerging web threats such as OWASP (Open Web Application Security Project) Top 10 attacks, the National Intelligence Service’s eight major vulnerabilities, Zero-Day attacks, and Bad Bots, to help you operate an efficient and stable web service.
- Convenient Security Management: By monitoring various attack events in real time and notifying the customer’s representative, it enables proactive response to security threats. It also provides monthly reports so you can review event details.
Service Architecture Diagram
Provided features
We provide the following features.
- Provision of intrusion detection/analysis and monitoring information
- 24x365 event monitoring (alert issuance, monthly report provision)
- Attack classification (Injection, XSS, File Include, File Up/Download, Web Scan, etc.) through web firewall event analysis
- Detection of latest attack patterns (e.g., Apache Struts vulnerabilities)
- Intrusion Response
- Provide IP information for attack attempts targeting registered URLs (recommended to block on Samsung Cloud Platform network firewall)
Component
We install a WAF license on the Virtual Server within the VPC of Samsung Cloud Platform and provide the service.
Constraints
To use WAF, first verify the following items.
- If the WAF is configured as a single instance, service continuity cannot be guaranteed in the event of a failure of the WAF installation VM or the WAF application.
- The Load Balancer and WAF of Samsung Cloud Platform do not support bypass.
- The security monitoring service provided by Samsung Cloud Platform is offered only for Pentasecurity products. (operation + monitoring product)
- The WAF service is installed with direct support from an engineer, and it takes a certain amount of time from request to deployment.
Provision status by region
WAF is available in the environments below.
| Region | Provision status |
|---|---|
| Korea West (kr-west1) | Not provided |
| Korea East (kr-east1) | Not provided |
| South Korea South 1 (kr-south1) | Provided |
| South Korea South 2 (kr-south2) | Provided |
| South Korea South 3 (kr-south3) | Provided |
Table. WAF regional availability status
Prior Service
This is a list of services that must be pre-configured before applying for the service. For details, refer to the guide provided for each service and prepare in advance.
- When using the WAF service, a WAF license is installed on the Virtual Server and provided. Install a Virtual Server that matches the service specifications you want first.
| Service Category | Service | Detailed description |
|---|---|---|
| Compute | Virtual Server | Virtual server optimized for cloud computing |
Table. WAF pre-service