Network Firewall on Direct

Introduction

Some customers using Direct choose to whitelist traffic from our Direct server in their firewall settings. While we can pass the device IP via Proxy Protocol, many Web Application Firewalls do not support using the IP from the Proxy Protocol Header for rule enforcement.

To enhance security for customers who require additional protections, we now offer the option to place a Network Firewall in front of our Direct server. This provides an extra layer of filtering and control for inbound traffic.

The Network Firewall

A network firewall monitors and controls incoming and outgoing network traffic based on predefined security rules. It works on Layers 3 and 4.

The Firewall is offered at two levels: firewall standard and firewall premium.

Firewall Standard

The network firewall has capabilities against this base set of rules. These will not be customisable for the basic service. These rules include:

• protections against Denial of Service attacks

• protections against known and confirmed active botnet and other Command and Control (C2) hosts

• detection of HTTP botnets

• protections against attacks, vulnerabilities and exploits, including ActiveX, FTP, ICMP, NetBIOS, RPC, ShellCode, SNMP, SQL, Telnet, TFTP, and VoIP

• detection of reconnaissance and probing from scanning tools

• detection of attacks and vulnerabilities related to web clients, web servers, and web applications

Please note, it will not be able to support rate limiting.

Support available through standard support channel.

Firewall Premium

The Premium offering is a dedicated service that includes all the standard capabilities, where the customer can customise the firewall settings. Information on customisations is forthcoming.