Barracuda Web Application Firewall

The Barracuda Web Application Firewall blocks application layer DDoS and other attack vectors, directed at online applications hosted in Microsoft Azure. Simultaneously, it provides superior protection against data loss. It also has strong authentication and access control capabilities for restricting access to sensitive applications and data.

The Barracuda Advantage

  • Barracuda Central Operations Center keeps track of emerging threats
  • State-of-the-art security utilizing full reverse-proxy architecture
  • Malware protection for collaborative web applications
  • Employs IP Reputation intelligence to defeat DDoS attacks
  • Designed to make it easier for organizations to comply with regulations such as PCI DSS and HIPAA

Product Spotlight

  • Comprehensive inbound attack protection including the OWASP Top 10
  • Built-in caching, compression, and TCP pooling ensure security without performance impacts
  • Identity-based user access control for web applications
  • Built-in data loss prevention
  • ICSA certified

Constant Protection from Evolving Threats

The Barracuda Web Application Firewall provides superior protection against data loss, DDoS, and all known application-layer attack vectors. Automatic updates provide defense against new threats as they appear. As new types of threats emerge, it will acquire new capabilities to block them.

Identity and Access Management

The Barracuda Web Application Firewall has strong authentication and access control capabilities that ensure security and privacy by restrict access to sensitive applications or data to authorised users.

Affordable and Easy to Use

Pre-built security templates and intuitive web user interface provide immediate security without the need for time-consuming tuning or application learning. Integration with security vulnerability scanners and SIEM tools automates the assessment, monitoring, and mitigation process.

Technical Features

Web Application Security

Web Application Security

  • OWASP top 10 protection
  • Protection against common attacks
  • SQL injection
  • Cross-site scripting
  • Cookie or forms tampering
  • Form field meta-data validation
  • Adaptive security
  • Website cloaking
  • URL encryption
  • Response control
  • Outbound data theft protection
  • Credit card numbers
  • Custom pattern matching (regex)
  • Granular policies to HTML elements
  • Protocol limit checks
  • File upload control

DDoS Protection

DDoS Protection

  • Barracuda IP Reputation Database
  • Heuristic Fingerprinting
  • CAPTCHA challenges
  • Slow Client protection
  • Geo IP Anonymous Proxy
  • ToR exit nodes
  • Barracuda Blacklist

Supported Web Protocols

Supported Web Protocols

  • HTTP/S 0.9/1.0/1.1
  • FTP/S XML
  • IPv4/IPv6

Authentication & Authorization

Authentication & Authorization

  • LDAP/RADIUS/Kerberos/ local user database
  • Client certificates
  • Single Sign-On
  • RSA SecurID
  • CA SiteMinder
  • SMS PASSCODE

SIEM Integrations

SIEM Integrations

  • ArcSight
  • RSA enVision
  • Splunk
  • Symantec
  • Custom

Networking

Networking

  • VLAN, NAT
  • Network ACLs
  • Advanced routing

XML Firewall

XML Firewall

  • XML DOS protection
  • Schema/WSDL enforcement
  • WS-I conformance checks

Logging, Monitoring & Reporting

Logging, Monitoring & Reporting

  • System log
  • Web firewall log
  • Access log
  • Audit log
  • Network firewall log
  • On-demand and scheduled Comprehensive reports

Centralized Management

Centralized Management

  • Monitor and configure multiple Barracuda products from a single interface
  • Check health and run reports
  • Assign roles with varied permissions available from anywhere

Support Options

Barracuda Energize Updates

  • Standard technical support
  • Firmware and capability updates as required
  • Automatic application definitions updates

Management Features

  • Customizable role-based administration
  • Vulnerability scanner integration
  • Trusted host exception
  • Adaptive profiling for learning
  • Exception profiling for tuning