FortiWeb
4 likes3,533 views
The document compares the security capabilities of an intrusion prevention system (IPS), intrusion detection system (IDS), and web application firewall (WAF). It finds that a WAF provides more comprehensive protection against web application vulnerabilities and attacks than an IPS or IDS, including protection for common threats like SQL injection, cross-site request forgery, and session hijacking. The document also provides specifications for four WAF appliance models with throughput ranging from 100 Mbps to 2 Gbps and storage from 1TB to 2TB.
FortiWeb
- 1. By: Akrami & Najafi April, 2014
- 8. Security IPS/IDS Firewall Web Application Firewall Injection attack protection (XSS, SQL) Limited Yes CSRF protection No Yes Normalize encoded traffic No Yes Inspect HTTPS traffic No Yes Session tampering/hijacking/riding protection No Yes Forceful browsing prevention No Yes Data theft protection, cloaking No Yes Brute-force protection No Yes Web services projection No Yes Virus/malware upload protection Yes Yes Application layer DoS protection No Yes Rate control protection No Yes Request, response rewrite No Yes Application access logging and user audit trails No Yes
- 12. • • • • • •
- 13. • • •
- 15. • • •
- 17. 100 Mbps HTTP Throughput 10,000 transaction per sec 500 Mbps HTTP Throughput 27,000 transaction per sec 1Gbps HTTP Throughput 40,000 transaction per sec 2Gbps HTTP Throughput 70,000 transaction per sec 1TB 1TB 2×1TB 2×1TB 4×10/100/1000 copper 4×10/100/1000 copper 4×10/100/1000 copper 4×10/100/1000 copper 2×1 Gbps copper 2×1 Gbps SFP 4×USB
- 19. Network Interface: Port 1 URL: https://192.168.1.99/ Administrative Account: admin Password: Network Interface: Port 1 URL: 192.168.1.99 SSH Port Number 22 Administrative Account: admin Password:
- 26. • • • • •
- 27. • • •
- 29. • • • • • • •
- 30. • • • •
- 32. • • • • • • • •
- 34. • • • • • • • •