Instructions for responding to emergency situations when working with Nemesida WAF
Though we are constantly working on optimizing all Nemesida WAF components, there is a possibility of an emergency situation. Similar situations include:
The most common issues while setting up the Nemesida WAF
Guide to solving main issues while setting up and operating the Nemesida WAF.
Configuring Nemesida WAF in reverse proxy mode
To use a web server with installed Nginx and Nemesida WAF as an intermediate server, you should create corresponding file of the virtual host (for example /etc/nginx/conf.d/example.com.conf).
Configuring failover operation of Nemesida WAF API
The Nemesida WAF API module is the key link between all Nemesida WAF components, so it is necessary to ensure its fault-tolerant operation. In this article we will explain how to do it.
Activation of Nginx process crash tracking when working with Nemesida WAF
During Nginx operation, errors may occur, leading to an emergency interruption of the execution of requests, as a result of which Nemesida WAF cannot process the request correctly. To track and correct errors in the code, the process memory image recording analysis (core dump) is used. Setup To activate the tracking functionality and record information
Countering DDoS/Brute-force/Flood attacks with Nemesida WAF
Nemesida WAF allows to automatically deal with brute force, flood and DDoS attacks. Setup Nemesida WAF Cabinet allows you to configure Nemesida WAF parameters to protect the web application using the web interface. To activate the functionality, you need to perform the following actions: 1. Make the minimal settings on servers with Nemesida WAF modules
Configuring centralized collection of Nemesida WAF events using Rsyslog
Nemesida WAF can be integrated with external SIEM systems. To do this, the first step is to configure, using Rsyslog, the collection of events from all servers where Nemesida WAF is installed. The Enterprise plan allows you to organize centralized collection, storage and processing of logs of all Nemesida WAF components using the capabilities of
Nemesida AI - the machine learning module of Nemesida WAF
How we created machine learning module and why we decided to refuse neural networks preferred to classical algorithms, what attacks are detected using Levenshtein distance and how the accuracy of the attack detection is reached.
Protection against brute-force attacks
Using the module Nemesida AI allows you to identify the signs of «brute-force» attacks.
Integration with ClamAV antivirus software
Nemesida WAF is supplemented with a new module designed to exchange data with the ClamAV antivirus software.