Linking External Services
Optionally, you can link vWAF to a number of external services that scan and analyze your web applications for malicious code and for vulnerabilities. Based on the results of the scans, vWAF can automatically add instant protection.
This approach shouldn’t be used as a replacement for fixing a vulnerable application, but it provides instant protection until you’ve been able to attend to the problem more closely.
To import the reports of your external services provider, and to manage the protection rules derived from these reports, you use the External Services tab. You can access this tab when you’ve selected an application in the navigation area.
On the External Services tab, there are several subtabs available:
- Malware detection allows you to link to an external malware detection service. This service scans your web application at regular intervals. Should attackers have been able to manipulate your web application in a way so that it returns malicious code to its users, malware detection can identify such malicious code and remove it “on the fly”.
- Vulnerability Management allows you to import reports of external web application scanners that have scanned your web application for possible attack vectors. Based on what’s been identified by the reports, vulnerability management can then automatically add rules that protect your web application from attacks that may be carried out via the identified vulnerabilities.
- Rule Management allows you to monitor which rules vWAF currently uses as a result of malware detection and vulnerability management.