Web Application Firewall (WAF)

Because web applications can be attacked in a variety of ways, a range of different protection mechanisms need to be implemented. Alongside basic security mechanisms on network level and Anti-DDoS, the Open Telekom Cloud also offers a Web Application Firewall.

The Web Application Firewall (WAF) acts as a shield for web apps and websites against multiple attackers such as SQL injection, malicious file execution, cross-site scripting (XSS), and more to keep them stable and secure. The WAF analyzes incoming requests and the response of the corresponding server in the Open Telekom Cloud, intelligently filtering out malicious traffic to safeguard data, ensure fast load times, and maintain uptime.

A hand holding a smartphone which is displaying a magenta-colored shield.

Reasons for WAF in the Open Telekom Cloud

Icon of a medal with a CPU in the background.

Leading technology

WAF uses the industry-leading semantic and regex engines to help accurately identify threats and significantly improve threat detection rate of hackers and bad actors attempting to bypass application security.

Symbol of a magnifying glass searching for a virus.

Precise identification

WAF precisely identifies malicious traffic to stop attacks based on pre-configured and customized rules.

A virus-infected browser window with a line graph in the background.

Attack pattern detection

Using decoding methods to prevent bypass attempts, WAF detects a wide range of common attack patterns, such as SQL injection or XSS.

Key Features der WAF

Motherboard with a hologram depicting a padlock.

Comprehensive web protection

A built-in extensive database of attack signatures detects and blocks dozens of common web attacks, such as SQL injection, XSS attacks, and webshells. Multi-engine cluster deployment and 24/7 monitoring ensure zero service interruption.

Symbol of computer software with a checkmark

Data Masking

Masks sensitive data during attacks to prevent data leakage.

Challenge Collapsar (CC) Attack Protection

Configures rate limiting policies based on IP addresses or cookies to mitigate CC attacks.

Symbol of a shield adorned with a magnifying glass.

Precise Protection

Groups common HTTP fields together to create customized protection policies.

Symbol of a browser window with a checkmark

Web Tamper Protection

Configures specified webpage cache as the returned page during webpage updates.

Symbol of a list which is half covered by shadows

Blacklist and Whitelist

Configures a blacklist or whitelist that can accurately block or allow specified IP addresses.

Symbol of an alarm clock marked by an X.

False Alarm Masking

Handles false alarms by ignoring attack detection rules of specific requests.

Structure and Function

New Features

06/12/2023General Availability Dedicated WAF View Details

07/08/2024Web Application Firewall - Enhanced Security with TLS 1.3 SupportView Details

11/13/2024Web Application Firewall (Dedicated) UpdateView Details

Don't want to miss any updates?Visit our portfolio roadmap and discover new services and updates.
Learn more

view all release notes

Find out more

Pricing overview

Price calculator
Pricing Models: Security
Service description incl. price list (PDF)

Documentation

User Guide und API-Beschreibung
Community

Do you have any questions?

Are you interested in WAF or do you have any questions regarding WAF? I will be happy to answer your questions in a free consultation!
T-Systems International GmbH
Tino Fehnle

Salutation *

Mrs.
Mr.
Mx.

Name *

Surname *

E-Mail *

Please enter your e-mail address correctly.

Company name

Country Dialing Code

Phone name

Your phone number seems to be incorrect. Please note it must contain at least four digits. Zeros at the beginning are not considered.

Your phone number seems to be incorrect. Please note that it must have a maximum of 26 characters.

Your phone number appears to be incorrect. Please note that only numbers from 0 to 9 can be used.

Your Message

Please solve the security question. *

I consent to the processing of the data I have provided for promotional purposes in order to receive information/offers about products and services of T-Systems International GmbH and Telekom Deutschland GmbH directly by e-mail, letter, telephone, SMS or MMS. Within e-mails/newsletters, my personal usage behavior is registered and evaluated by T-Systems International GmbH and Telekom Deutschland GmbH so that new content and consulting can be better aligned with my personal interests. The consent I have already given remains valid. I can revoke my consent at any time by sending an e-mail to t-systems.marketing@t-systems.com. I have taken note of the information on the right of revocation and the privacy policy (www.t-systems.com/privacy-notice and https://www.telekom.de/datenschutzhinweise). * *

* required fields