Barracuda Web Application Firewall Vx
PRÉSENTATION
TECHNICAL SPECS
MODELS & OPTIONS
close x

Barracuda Web Application Firewall Vx

Protect Applications and Data from Advanced Threats

Download PDF

Overview

The Barracuda Web Application Firewall blocks an ever-expanding list of sophisticated web-based intrusions and attacks that target the applications hosted on your web servers—and the sensitive or confidential data to which they have access.

L'avantage Barracuda

  • State-of-the-art security utilizing full reverse-proxy architecture
  • Malware protection for collaborative web applications
  • Employs IP Reputation intelligence to defeat DDoS attacks
  • No user-based or module-based licensing
  • Designed to make it easier for organizations to comply with regulations such as PCI DSS and HIPAA
  • Cloud-based scan with Barracuda Vulnerability Manager
  • Automatic vulnerability remediation

Product Spotlight

  • Comprehensive inbound attack protection including the OWASP Top 10
  • Built-in caching, compression and TCP pooling ensure security without performance impacts
  • Identity-based user access control for web applications
  • Built-in data loss prevention
  • ICSA certified
  • Protection against Application DDoS attacks

Constant Protection from Evolving Threats

The Barracuda Web Application Firewall provides superior protection against data loss, DDoS, and all known applicationlayer attack modalities. Automatic updates provide defense against new threats as they appear. As new types of threats emerge, it will acquire new capabilities to block them.

Identity and Access Management

The Barracuda Web Application Firewall has strong authentication and access control capabilities that ensure security and privacy by restricting access to sensitive applications or data to authorized users.

Affordable and Easy to Use

Pre-built security templates and intuitive web interface provide immediate security without the need for time-consuming tuning or application learning. Integration with security vulnerability scanners and SIEM tools automates the assessment, monitoring, and mitigation process.

"With the Barracuda Web Application Firewall in place, we are demonstrating to our customers and partners that we are serious about the security of their data. It lets our staff to worry less about backend security and concentrate more on providing quality services to our partners and customers." - Michael Fainshtein, Chief Technology Officer CredoRax

Technical Specs

Technical Specs

Sécurité des applications Web

  • OWASP top 10 protection
  • Form field meta-data validation
  • Adaptive security
  • Website cloaking
  • Response control
  • XML firewall
  • JSON payload inspection
  • Web scraping protection
  • Granular policies to HTML elements
  • Protocol limit checks
  • File upload control
Protection against common attacks:
  • SQL injection
  • Cross-site scripting
  • Cookie or forms tampering
Outbound data theft protection:
  • Credit card numbers
  • Custom pattern matching (regex)

Hypervisor Support

  • VLAN, NAT
  • VMware Server/Fusion/Workstation/Player
  • Citrix Xenserver
  • Oracle VirtualBox
  • Microsoft Hyper-V

DDoS Protection

  • Barracuda IP Reputation Database
  • Integration with Barracuda NextGen Firewall to block malicious IPs
  • Heuristic Fingerprinting
  • CAPTCHA challenges
  • Slow Client protection
  • Layer 3 and Layer 7 Geo IP
  • Anonymous Proxy
  • ToR exit nodes
  • Barracuda Blacklist

Supported Web Protocols

  • HTTP/S 0.9/1.0/1.1/2.0
  • WebSocket
  • FTP/S
  • XML
  • IPv4/IPv6

Authentication

  • LDAP/RADIUS
  • Client Certificates
  • SMS Passcode
  • Authentification unique
  • Multi-Domain SSO

Advanced Authentication (660VX & above)

  • Kerberos v5
  • SAML
  • Azure AD
  • RSA SecurID

Application Delivery and Acceleration

  • High availability
  • SSL offloading
  • Load balancing
  • Content routing

Intégrations SIEM

  • HPE ArcSight
  • RSA enVision
  • Splunk
  • Symantec
  • Microsoft Azure Event Hub
  • Custom

Journalisation, suivi et rapports

  • System log
  • Web Firewall log
  • Access log
  • Audit log
  • Network firewall log
  • On-demand and scheduled reports

Gestion centralisée

  • Monitor and configure multiple Barracuda products from a single interface
    • Check health and run reports
    • Assign roles with varied permissions
    • Available from anywhere

Models & Options

Models

360 Vx

  • 1 à 5 Serveurs principaux pris en charge
  • 2 Nombre de cœurs de processeur autorisés
  • 25 Mbits/s Débit

+ Show more - Show less

  • Fonctionnalités

  • SECURITY
  • Response Control
  • Outbound Data Theft Protection
  • File Upload Control
  • Vulnerability Scanner Integration
  • Protection against Application DDoS Attacks
  • Bot Defense/ Web Scraping Protection
  • Network Firewall
  • JSON Protection
  • Firewall XML
  • Chiffrement d'URL
  • Profilage adaptatif
  • AV pour les téléchargements de fichiers
  • Advanced Threat Protection

  • Contrôle d’accès

  • Authentication and Authorization
  • LDAP/RADIUS
  • TRAFFIC MANAGEMENT AND AVAILABILITY
  • Équilibrage de charge
  • Mise en cache et compression
  • Routage du contenu
  • High Availability Active/Passive
  • NETWORKING
  • Routage avancé

460 Vx

  • 5 à 10 Serveurs principaux pris en charge
  • 4 Nombre de cœurs de processeur autorisés
  • 50 Mbits/s Débit

+ Show more - Show less

  • Fonctionnalités

  • SECURITY
  • Response Control
  • Outbound Data Theft Protection
  • File Upload Control
  • Vulnerability Scanner Integration
  • Protection against Application DDoS Attacks
  • Bot Defense/ Web Scraping Protection
  • Network Firewall
  • JSON Protection
  • Firewall XML
  • Chiffrement d'URL
  • Profilage adaptatif
  • AV pour les téléchargements de fichiers
  • Advanced Threat Protection

  • Contrôle d’accès

  • Authentication and Authorization
  • LDAP/RADIUS
  • TRAFFIC MANAGEMENT AND AVAILABILITY
  • Load Balancing
  • Caching and Compression
  • Content Routing
  • High Availability Active/Passive
  • NETWORKING
  • Routage avancé

660 Vx

  • 10 à 25 Serveurs principaux pris en charge
  • 6 Nombre de cœurs de processeur autorisés
  • 200 Mbits/s Débit

+ Show more - Show less

  • Fonctionnalités

  • SECURITY
  • Response Control
  • Outbound Data Theft Protection
  • File Upload Control
  • Vulnerability Scanner Integration
  • Protection against Application DDoS Attacks
  • Bot Defense/ Web Scraping Protection
  • Network Firewall
  • JSON Protection
  • XML Firewall
  • URL Encryption
  • Adaptive Profiling
  • AV for File Uploads
  • Advanced Threat Protection

  • Contrôle d’accès

  • Authentication and Authorization
  • LDAP/RADIUS
  • TRAFFIC MANAGEMENT AND AVAILABILITY
  • Load Balancing
  • Caching and Compression
  • Content Routing
  • High Availability Active/Active
  • NETWORKING
  • Advanced Routing

760 Vx

  • 25 à 50 Serveurs principaux pris en charge
  • 8 Nombre de cœurs de processeur autorisés
  • 500 Mbits/s Débit

+ Show more - Show less

  • Fonctionnalités

  • SECURITY
  • Response Control
  • Outbound Data Theft Protection
  • File Upload Control
  • Vulnerability Scanner Integration
  • Protection against Application DDoS Attacks
  • Bot Defense/ Web Scraping Protection
  • Network Firewall
  • JSON Protection
  • XML Firewall
  • URL Encryption
  • Adaptive Profiling
  • AV for File Uploads
  • Advanced Threat Protection

  • Contrôle d’accès

  • Authentication and Authorization
  • LDAP/RADIUS
  • TRAFFIC MANAGEMENT AND AVAILABILITY
  • Load Balancing
  • Caching and Compression
  • Content Routing
  • High Availability Active/Active
  • NETWORKING
  • Advanced Routing

860 Vx

  • 50 à 150 Serveurs principaux pris en charge
  • 10 Nombre de cœurs de processeur autorisés
  • 1 Gbit/s Débit

+ Show more - Show less

  • Fonctionnalités

  • SECURITY
  • Response Control
  • Outbound Data Theft Protection
  • File Upload Control
  • Vulnerability Scanner Integration
  • Protection against Application DDoS Attacks
  • Bot Defense/ Web Scraping Protection
  • Network Firewall
  • JSON Protection
  • XML Firewall
  • URL Encryption
  • Adaptive Profiling
  • AV for File Uploads
  • Advanced Threat Protection

  • Contrôle d’accès

  • Authentication and Authorization
  • LDAP/RADIUS
  • TRAFFIC MANAGEMENT AND AVAILABILITY
  • Load Balancing
  • Caching and Compression
  • Content Routing
  • High Availability Active/Active
  • NETWORKING
  • Advanced Routing

960 Vx

  • 150 à 300 Serveurs principaux pris en charge
  • 12 Nombre de cœurs de processeur autorisés
  • 5 Gbits/s Débit

+ Show more - Show less

  • Fonctionnalités

  • SECURITY
  • Response Control
  • Outbound Data Theft Protection
  • File Upload Control
  • Vulnerability Scanner Integration
  • Protection against Application DDoS Attacks
  • Bot Defense/ Web Scraping Protection
  • Network Firewall
  • JSON Protection
  • XML Firewall
  • URL Encryption
  • Adaptive Profiling
  • AV for File Uploads
  • Advanced Threat Protection

  • Contrôle d’accès

  • Authentication and Authorization
  • LDAP/RADIUS
  • TRAFFIC MANAGEMENT AND AVAILABILITY
  • Load Balancing
  • Caching and Compression
  • Content Routing
  • High Availability Active/Active
  • NETWORKING
  • Advanced Routing

Options d’assistance

Barracuda Energize Updates

  • Standard technical support
  • Firmware and capability updates as required
  • Automatic application definitions updates

Management Options

  • Customizable role-based administration
  • Vulnerability scanner integration
  • Trusted host exception
  • API REST
  • Custom Templates
  • Interactive and scheduled reports