Our products include two WAFs (Web Application Firewall): basic and advanced (Next-Gen WAF).
Let’s find out what the difference between these services is and which solution should be chosen for your resource.
Basic WAF is a free firewall that protects against the most common set of threats. It is free and available to all users of our CDN.
Attacks are calculated only by a predefined set of signatures.
You can activate the service in your account for one or several resources.
Basic WAF provides good protection against the most common threats. But it will not be able to protect your resource from all attacks. This means there is always a chance of some rare attack or zero-day vulnerability that the shield will not work against.
This type of web protection also has limitations: it does not allow for the configuration of your own rules, and the number of protected requests for a resource is limited.
Next-Gen WAF is a technological security shield against hacking and unauthorized access to your resource.
The firewall protects dynamic content against known hacker attacks and provides a secure API connection.
Thanks to the machine learning function, advanced WAF is able to detect and fight against zero-day attacks, which are particularly dangerous for business.
The firewall’s operation is based on signature and non-signature analysis methods.
Signature-based methods help identify widespread cyberattacks.
Signature-free (statistical) methods of analysis and machine learning detect zero-day attacks that do not have their signature in the database yet.
In addition to blocking attacks, the firewall analyzes your resource, finds possible vulnerabilities, and provides recommendations on fixing them.
The advanced version of WAF has no restrictions on the number of resources and protected requests.
|Basic WAF||Next-Gen WAF|
|Operation||Signature analysis of traffic||Signature and non-signature analysis methods, machine learning|
|Protection||OWASP Top 10 and Log4Shell vulnerability||All known attacks + zero-day vulnerabilities|
|Vulnerability analysis||−||Finds vulnerabilities and provides recommendations on how to fix them|
|Setup of your own rules||−||+|
|Limit on the number of requests||+||−|
|Price||Free for CDN users||From 50 EUR per month|
Basic WAF is a suitable choice for small projects where the number of requests does not exceed 10 million per month. You will be reliably protected from common threats without additional financial investments.
Basic WAF works with all CDN plans. The content delivery network protects resources from DDoS attacks at the network and transport levels by default.
For those who consider security to be critically important, basic web protection will not be enough. We recommend using Next-Gen WAF for all e-commerce and fintech applications, telemedicine, and other projects that work with payment, personal and confidential data, as well as resources where the number of requests per month exceeds 10 million.
If you still have questions or are not sure which solution to choose, you can have a free consultation. Our experts will help you choose the right option.