NSFOCUS WAF Log4j2_RCE Protection

julho 27, 2023 | NSFOCUS

Logging events is a critical aspect of software development. While there are lots of frameworks available in Java ecosystem, Log4j has been the most popular for decades, due to the flexibility and simplicity it provides. Apache Log4j is part of the Apache Logging Services, a project of the Apache Software Foundation. Log4j 2 is a […]

Description of ADS Attack Logs: SYN Flood Logs (Part 1)

julho 20, 2023 | NSFOCUS

Introduction to SYN Flood A three-way handshake is required to establish a TCP connection. First, the client sends a TCP SYN packet to the server. The server responds to the client request with an SYN-ACK packet. Then the server waits and expects an ACK packet from the client. At this time, the connection is in […]

Common SSL Vulnerability Protection

julho 13, 2023 | NSFOCUS

This article describes how to configure security policies on NSFOCUS WAF for protection against some common SSL vulnerabilities. TLS Client-initiated Renegotiation Support on the Server – CVE-2011-1473 This vulnerability exists during SSL renegotiation, and services that use the SSL renegotiation function will be impacted. Although it is currently possible to use HTTPS without enabling the […]

Importing an NTA Configuration File

julho 6, 2023 | NSFOCUS

NTA allows users to import and export configuration files so as to meet users’ requirements for quick configuration restoration and local configuration file backup. To import a configuration file, perform the following steps: Choose Administration > System Configuration > Basic Information > Import Config. Select a configuration file to be imported and select desired items. […]

Global Threat Intelligence Function of NSFOCUS ADS

junho 29, 2023 | NSFOCUS

Powered by NSFOCUS Threat Intelligence (NTI), NSFOCUS ADS can block IP addresses that pose serious threats and high risks. To ensure data reliability, ADS updates intelligence data daily and provides available update time frames for users to select. For the purpose of preventing IP blocking by mistake, you can configure IP exceptions to exclude a […]

Illegal Upload Protection

junho 13, 2023 | NSFOCUS

When a client uploads a file to a server, NSFOCUS WAF performs protection based on the file type. If the file type matches an illegal upload restriction policy, NSFOCUS WAF allows or blocks the upload based on the corresponding action specified in the policy, and logs the event. On the Illegal Upload Restriction page, customers […]

Will the device restart after importing the license for ADS, ADS M, and NTA?

junho 6, 2023 | NSFOCUS

Upon successful import of the new license: After ADS, NTA, and ADS M are installed, you must import a license before using it. License types vary a bit for hardware devices and virtual devices. Hardware device: License types include Trial, Temporary Sales, and Perpetual. Virtual device (vADS, vNTA, vADSM): License types include Trial, Temporary Sales, […]

Illegal Download Protection

junho 1, 2023 | NSFOCUS

When a client downloads a file from a server, NSFOCUS WAF performs protection based on the file type, file size or MIME type. If the download file matches an illegal download restriction policy, NSFOCUS WAF allows or blocks the download based on the corresponding action specified in the policy, and logs the event. On the […]

How does NIPS Block or Pass a Specific IP Address?

maio 30, 2023 | NSFOCUS

Q: How does NIPS block traffic from a specific IP address or allow such traffic to pass? A: From version 5.6R11, NIPS introduces the global blacklist and whitelist. NIPS deems traffic from IP addresses in the global blacklist to be malicious by default and directly blocks such traffic. As for traffic from the allowed IP […]

How to Power Off ADS M Portal Properly

maio 22, 2023 | NSFOCUS

To ensure proper shutdown of the ADS M Portal, it is recommended to synchronize memory data with the hard disk before initiating a shutdown. The command for this is sync. Failure to do so may result in data loss. After synchronization, you may proceed with the shutdown command for power off, instead of power off […]

Search