Datafree Technologies
  • Welcome to Datafree Technologies Docs
  • Connect
    • Connect Product Overview
  • Reach
    • Reach Product Overview
    • Reach Tutorial Videos
    • Steps to Implement Datafree Reach
    • Advanced Topics
    • CORS Support
    • How to Build a Custom Exit Zone Warning Page
    • How to identify Reach traffic
    • Double Encryption in Reach
  • Direct
    • Direct Product Overview
    • Datafree D-Direct
    • D-Direct Failover
    • Information to Collect for a New D-Direct App
    • Network Firewall on Direct
  • Wrap
    • Wrap Product Overview
    • Wrap Best Practices
    • Wrap Daily Limit
  • Switch
    • Switch Product Overview
  • FAQs
    • What is “datafree”?
    • How can I test that my app is datafree?
    • How do I see data usage for my app?
    • What Telcos or MNOs are datafree?
    • What can be made datafree?
Powered by GitBook
On this page
  • Introduction
  • The Network Firewall
  • Firewall Standard
  • Firewall Premium
  1. Direct

Network Firewall on Direct

An additional layer of filtering and control for inbound traffic.

Introduction

Some customers using Direct choose to whitelist traffic from our Direct server in their firewall settings. While we can pass the device IP via Proxy Protocol, many Web Application Firewalls do not support using the IP from the Proxy Protocol Header for rule enforcement.

To enhance security for customers who require additional protections, we now offer the option to place a Network Firewall in front of our Direct server. This provides an extra layer of filtering and control for inbound traffic.

The Network Firewall

A network firewall monitors and controls incoming and outgoing network traffic based on predefined security rules. It works on Layers 3 and 4.

The Firewall is offered at two levels: firewall standard and firewall premium.

Firewall Standard

The network firewall has capabilities against this base set of rules. These will not be customisable for the basic service. These rules include:

  • protections against Denial of Service attacks

  • protections against known and confirmed active botnet and other Command and Control (C2) hosts

  • detection of HTTP botnets

  • protections against attacks, vulnerabilities and exploits, including ActiveX, FTP, ICMP, NetBIOS, RPC, ShellCode, SNMP, SQL, Telnet, TFTP, and VoIP

  • detection of reconnaissance and probing from scanning tools

  • detection of attacks and vulnerabilities related to web clients, web servers, and web applications

Please note, it will not be able to support rate limiting.

Support available through standard support channel.

Firewall Premium

The Premium offering is a dedicated service that includes all the standard capabilities, where the customer can customise the firewall settings. Information on customisations is forthcoming.

PreviousInformation to Collect for a New D-Direct AppNextWrap Product Overview

Last updated 14 days ago