Skip to main content

Protecting the site with WAF StormWall

Last update:

Protecting web applications from targeted attacks in partnership with StormWall.

The main task of site protection with WAF is to block attacks and eliminate vulnerabilities that are included in the Open Web Application Security Project's ranking of common web application vulnerabilities.

The service is connected only in addition to the DDoS protection service.

Principle of operation

Application traffic that already passes through StormWall protection at the L7 level is additionally redirected to the site protection system using WAF.

For the first two weeks after the service is activated, the system works in monitoring and training mode to learn how to protect your application specifically.To do this, the system studies user behavior and checks traffic for compliance with known types of attacks.

In learning mode, StormWall specialists independently monitor anomalies and suppress false positives — requests from a real user that the system mistook for an attack. During this period, WAF does not block attacks.

Based on the collected data, filtering rules are generated and the accuracy of blocking attacks is improved.

When system training is complete, StormWall experts will enable attack blocking mode in consultation with you.

Cost

The cost of the service adds up:

  • from the selected tariff of the service Website protection with WAF;
  • the number of web applications that need to be protected;
  • number of RPS (requests per second);
  • choice of WAF partner solution. The price of the tariff and the number of protected domains included in the tariff depend on the choice of partner solution;
  • the number of RPS that exceeds the value stipulated in the tariff.

To view prices for the WAF StormWall service, visit selectel.ru

On the day of connection a one-time payment equal to the cost of the selected tariff is deducted. Then the payment is deducted automatically on the first day of each month.

The invoice for payment for the volume of legitimate traffic that exceeds the value stipulated in the tariff is generated in the control panel within five working days after the end of the calendar month.

A single balance or a basic balance is used to pay for the service depending on the type of balance in the account.

Connect the service

  1. Create a ticket. In the ticket specify:

    • service name — Website protection with WAF StormWall;
    • A list of web applications to be protected, including IP addresses;
    • RPS (requests per second);
    • the date of connection;
    • email for registration in the personal cabinet. The data for entering the personal cabinet will be sent to this email.

  2. We will notify you of the connection in a ticket.

Deactivate the service

Disabling the service does not affect the DDoS Protection of the site — it will continue to work.

If you wish to disconnect the service before the end of the paid month, payment for the unused balance of the month will not be refunded.

To disable the service, create a ticket.