When we talk about cyber security, attacks against websites/web applications are the most prevalent issue in cyber security. Many SMB businesses think they’re too small to be targeted by hackers, whereas most hackers use automated systems, script and bots to find vulnerable web applications.Lack of awareness, loose security configuration, missing updates and most important missing attack prevention systems are the major cause behind a hacked site.Organizations of all kinds, regardless of their size need to protect their web applications and data against these attacks.
So, How do we protect WebApplications against these security threats? Well, one thing to note down is, having just a network firewall between your web server and internet isn’t just enough. Web Application Firewall is your answer. A web application firewall (or WAF) filters, monitors, and blocks HTTP traffic to and from a web application. Barracuda WAF is one of widely used WAF and is quite popular among Azure Customers.
Barracuda Web Application Firewall inspects inbound web traffic and blocks SQL injections, Cross-Site Scripting, malware uploads & application DDoS and other attacks targeted at your web applications. It also inspects the responses from the back-end web servers for Data Loss Prevention (DLP). The integrated access control engine enables administrators to create granular access control policies for Authentication, Authorization & Accounting (AAA), which gives organizations strong authentication and user control. The onboard L4/L7 Load Balancing capabilities enable organizations to quickly add back-end servers to scale deployments. Application acceleration capabilities including SSL Offloading, caching, compression, and connection pooling, ensure faster application delivery of web application content.
We have developed an Azure Quickstart Template for deploying a fully functionally Barracuda Web Application firewall Solution on Azure. The Solution includes Barracuda WAF Appliance and backend web servers running Windows Server 2012 R2 with IIS. Template will build everything starting from Azure Infrastructure components to Barracuda deployment and Windows VM deployment with automated IIS Web Server installation. This template will deploy one Barracuda WAF VM and multiple backend web servers as per requirement.The template is built with standard best practices, keeping security as top priority.
Quickstart is available here . This includes detailed insights about template architecture, step by step guidance to get started and post deployment steps.
Give it a try if you’re planning to host web applications on Azure, feel free to reach us at firstname.lastname@example.org case of anything.
Stay Secure 🙂