Barracuda Web Application Firewall 660 - security appliance

Category: Firewall appliances
  $14,152.15
 
Quantity:
Add to Cart Print
 

View all Firewall appliances by Barracuda Networks >>


Product Id: 25182278

Description: Barracuda Web Application Firewall 660 - Security appliance - with 1 year Energize Updates and Instant Replacement - GigE - 1U - rack-mountable

Mfr Part #: BWF660A11

MSRP: $14,897.00

The Barracuda Web Application Firewall 660 with 1 year Energize Updates and Instant Replacement Subscription blocks an ever-expanding list of sophisticated web-based intrusions and attacks that target applications hosted on web servers and in the cloud. The Barracuda Web Application Firewall scans all inbound web traffic to block attacks and scans all outbound traffic to provide highly effective Data Loss Prevention (DLP). The Barracuda Web Application Firewall 660 supports 10 - 25 backend servers, 200 Mbps throughput, 10,000 HTTP transactions/sec. and 6,000 SSL transactions/sec. Features include: HTTP/S, FTP protocol validation, form field meta data validation, web site cloaking, response control, outbound data theft protection, file upload control, logging, monitoring and reporting, high availability, SSL offloading, authentication and authorization, vulnerability scanner integration, centralized management, client IP reputation, network firewall, high availability (active/active), caching and compression, LDAP/RADIUS, load balancing, content routing, ECC memory.
Key Points
  • HTTP, HTTPS and FTP protocol compliance
  • Protection against common, high-visibility attacks
  • Protection against attacks based on session state
  • Outbound data theft protection
  • Web site cloaking
  • Anti-crawling
  • Fine-grained control
  • Application denial of service (DoS) protection
  • PKI support
  • Cookie tampering
  • SSL offloading
  • SSL acceleration
  • Load balancing
  • High availability
  • Comprehensive logging
  • PCI reports
  • Syslog support
Product Features
  • HTTP, HTTPS and FTP protocol compliance
    At a basic level, the Barracuda Web Application Firewall verifies all inbound requests that comply with the HTTP, HTTPS and FTP specification. For example, inbound requests with more than one content-length header are typically the basis of HTTP request smuggling attacks; therefore they are illegal according to the HTTP specification and are blocked automatically.
  • Protection against common, high-visibility attacks
    Hackers can take advantage of vulnerabilities in your online web forms to attack your applications. The Barracuda Web Application Firewall protects your web applications against SQL injections, OS command injections and cross-site scripting attacks.
  • Protection against attacks based on session state
    The Barracuda Web Application Firewall protects your web applications against any attacks based on session state, such as forms tampering or cookie tampering.
  • Outbound data theft protection
    In addition to inspecting the request traffic, the Barracuda Web Application Firewall also inspects all outbound packets for any data pattern expressible as a UNIX-style regular expression. Built-in policies protect all major credit cards and U. S. Social Security number patterns and new data patterns can be added at any time. Inspection for outbound leakage of these patterns can be applied to security policy on-the-fly.
  • Web site cloaking
    To prevent hackers from doing reconnaissance on your web infrastructure, the Barracuda Web Application Firewall automatically strips identifying banners of web server software and version numbers out of all transactions.
  • Anti-crawling
    While some web crawlers, such as search engines are often desirable, you may wish to prevent all other users from downloading your entire site. The Barracuda Web Application Firewall can easily identify and allow legitimate crawlers while blocking more malicious ones.
  • Fine-grained control
    The Barracuda Web Application Firewall features automatic fine-grain rules creation based on both HTTP requests and responses down to the level of individual HTML elements.
  • Application denial of service (DoS) protection
    The Barracuda Web Application Firewall controls the rate of allowed operations that use an intense amount of resources, thus protecting against application-layer denial of service attacks.
  • PKI support
    By providing a full PKI infrastructure, the Barracuda Web Site Firewall can act as a Certificate Authority, including participating in a certificate trust chain.
  • Cookie tampering
    The Barracuda Web Application Firewall fully terminates and proxies every connection to insulate each unique user session from exposure and can stamp or encrypt the session cookies. Also included to prevent cookie tampering is the ability to ensure that all hidden or read-only form fields are not changed by the user.
  • SSL offloading
    The Barracuda Web Application Firewall includes SSL offloading, streamlining the encryption and decryption of SSL traffic to quickly process secure online transactions without additional burden on any servers.
  • SSL acceleration
    The Barracuda Web Site Firewall includes hardware-based SSL acceleration, offloading back-end servers from the computational burdens of encrypting and decrypting secure Web traffic.
  • Load balancing
    The Barracuda Web Application Firewall includes integrated load balancing capabilities to distribute traffic among multiple back-end servers. It supports both Layer 4 and Layer 7 cookie persistence and includes support for Layer 7 content switching based on URL pattern, parameter or HTTP header fields.
  • High availability
    When inline in bridge-path, the Ethernet hard bypass ensures reliable application delivery even with a single Barracuda Web Application Firewall. For web applications with stringent security requirements, the Barracuda Web Application Firewall may be installed in a redundant pair configuration, providing real-time application state replication so that security and user sessions will not be compromised during a failover event.
  • Comprehensive logging
    The Barracuda Web Application Firewall maintains a rich set of logs on the appliance, including system activity, web firewall activity, web services activity, network firewall activity and traditional web logs.
  • PCI reports
    The Barracuda Web Application Firewall provides an easy-to-read snapshot of common application attacks, critical for securing credit card information and providing compliance to PCI DSS requirements.
  • Syslog support
    The Barracuda Web Site Firewall forwards logs to a syslog server for centralized and persistent storage or analysis by a third party tool.