Protect a web server against attacks
You can protect a web server against attacks using a firewall rule.
Objectives
When you complete this unit, you'll know how to do the following:
- Configure a web server to be protected.
- Define protection settings.
- Define a firewall rule to protect the web server.
Add an FQDN host
Define a host for the web server.
- Go to Hosts and services > FQDN host and click Add.
-
Specify the settings.
Option Description Name My website FQDN example.com -
Click Save.
Configure a web server
Configure a web server to host a website.
- Go to Web server > Web servers and select Add.
-
Specify the settings.
Note
For settings not listed here, use the default value.
Option Description Name My web server Host My website -
Click Save.
Define a protection policy
These settings protect the network against unauthorized access and common threats.
- Go to Web server > Protection policies and select Add.
-
Specify the settings.
Option Description Name Web server protection -
Specify protection settings.
Option Description Pass Outlook anywhere Off Mode Reject Cookie signing Off Static URL hardening On Entry URLs / Form hardening On Antivirus On Block clients with bad reputation On Skip remote lookups for clients with bad reputation Off Common threat filter On -
Click Save.
Define a firewall rule
To protect the web server against application exploits, you define a firewall rule that uses the WAF template. You specify the web server, authentication settings, and protection settings.
- Go to Rules and policies > Firewall rules, select protocol IPv4 or IPv6, and click Add firewall rule. Select New firewall rule.
-
Specify the settings.
Option Description Rule name Protect my web server Action Protect with web server protection -
Specify hosted server settings.
Option Description Hosted address #Port1 Domains webserver.example.com -
Specify protected server settings.
Option Description Web server list My web server -
Specify access permission settings.
Option Description Allowed client networks Any IPv4 Authentication Basic with passthrough -
Specify advanced settings.
Option Description Protection Web server protection policy -
Click Save.
The web server is protected from the attacks specified by the protection policy.
More resources