Protecting services using NetScaler AppFirewall™
NetScaler is equipped with many security features that can fend off attacks, which we have talked about earlier in this chapter. These features include:
SYN DoS Protection
ACL
HTTP DoS
These are just some of the features that can be used, but most of these features only look at the connection or further down the ISO layer, and not so much on what kind of content is in there. In today's IT environment, the most common form of attack occurs using SQL injections, HTTP brute forcing, CSRP attacks, and so on. This is where the application firewall comes in.
The application firewall is used to secure services running behind NetScaler. It consists of policies and profiles. Here, we use the policy to identify patterns in the traffic. Profiles—like most features in NetScaler—are used to specify what we are going to do with the traffic.
The application firewall delivers protection in two ways. The first is signature-based. This means that NetScaler recognizes...
