Instructions for responding to emergency situations when working with Nemesida WAF
Though we are constantly working on optimizing all Nemesida WAF components, there is a possibility of an emergency situation. Similar situations include:
Though we are constantly working on optimizing all Nemesida WAF components, there is a possibility of an emergency situation. Similar situations include:
Guide to solving main issues while setting up and operating the Nemesida WAF.
To use a web server with installed Nginx and Nemesida WAF as an intermediate server, you should create corresponding file of the virtual host (for example /etc/nginx/conf.d/example.com.conf).
The Nemesida WAF API module is the key link between all Nemesida WAF components, so it is necessary to ensure its fault-tolerant operation. In this article we will explain how to do it.
During Nginx operation, errors may occur, leading to an emergency interruption of the execution of requests, as a result of which Nemesida WAF cannot process the request correctly. To track and correct errors in the code, the process memory image recording analysis (core dump) is used. Setup To activate the tracking functionality and record information
Nemesida WAF allows to automatically deal with brute force, flood and DDoS attacks. Setup Nemesida WAF Cabinet allows you to configure Nemesida WAF parameters to protect the web application using the web interface. To activate the functionality, you need to perform the following actions: 1. Make the minimal settings on servers with Nemesida WAF modules
Nemesida WAF can be integrated with external SIEM systems. To do this, the first step is to configure, using Rsyslog, the collection of events from all servers where Nemesida WAF is installed. The Enterprise plan allows you to organize centralized collection, storage and processing of logs of all Nemesida WAF components using the capabilities of
How we created machine learning module and why we decided to refuse neural networks preferred to classical algorithms, what attacks are detected using Levenshtein distance and how the accuracy of the attack detection is reached.
Using the module Nemesida AI allows you to identify the signs of «brute-force» attacks.
Nemesida WAF is supplemented with a new module designed to exchange data with the ClamAV antivirus software.