Protecting a web server against attacks
You can protect a web server against attacks using a business application rule.
Objectives
When you complete this unit, you’ll know how to do the following:- Configure a web server to be protected.
- Define protection settings.
- Define a business application rule to protect the web server.
Add an FQDN host
Define a host for the web server.
- Go to Add. and click
-
Specify the settings.
Option Description Name My website FQDN example.com - Click Save.
Configure a web server
Configure a web server to host a website.
Define a protection policy
These settings protect the network against unauthorized access and common threats.
- Go to Add. and click
-
Specify the settings.
Option Description Name Web server protection -
Specify protection settings.
Option Description Pass Outlook anywhere Off Mode Reject Cookie signing Off Static URL hardening On Entry URLs / Form hardening On Anti-virus On Block clients with bad reputation On Skip remote lookups for clients with bad reputation Off Common threat filter On - Click Save.
Define a business application rule
To protect the web server against application exploits, you define a business application rule that uses the WAF template. You specify the web server, authentication settings, and protection settings.