Cloud web firewall that
checks vulnerabilities of website and responds to attacks

Web Firewall

01

It is a cloud web firewall that can be set up in various kinds of environments including on-premises environments, public clouds, private clouds, and hybrid clouds. Its speed and availability are excellent, providing safe protection from various web service security threats in a cloud environment. IXcloud provides s/w-type web firewall that can be installed and used on one VM, and stand-alone web firewall service that can be applied to multiple VM.

Price

(VAT not included)

Category Monthly Rate
s/w web firewall KRW 150,000

(VAT not included)

Category Type Monthly Rate
stand-alone web firewall + monitoring service 300M(Single) KRW 480,000
500M(Single) KRW 600,000
1G(Single) KRW 960,000
300M(HA) KRW 960,000
500M(HA) KRW 1,200,000
1G(HA) KRW 1,920,000
* The stand-alone web firewall is installed on a separate VM, and the created VM is billed separately. The KINX operation team will create a new VM after consultation.
* The monitoring service is provided by one of our partners, GABIA.

How to Use

Sign up for
the service

1. Select the web firewall type and service type and apply for the service.

Web Firewall installation

2. KINX’s Operations Team will install a web firewall according to the service requested.

Configuration of security settings

3. The security and monitoring service provider will contact you to configure the detailed security settings.

Web Firewall security

4. After the security settings are configured, you will obtain the designated security services.

Configuration Diagram

- Private LB requires separate configuration.
- When configuring Public LB, it is configured through IXcloud load balancer.
- Redundancy configuration is configured in Active – Active method.

Feature

Feature of IXcloud™ Web Firewall

Detailed Features

  • HTTPS/HTTP 1.0/1.1/2-based web attack response
  • Detection and blocking of Layer7 DoS attacks, brute-force attacks and dictionary attacks
  • Response to OWASP Top 10 and PCI DSS 6.6 requirements and top 8 vulnerabilities noted by the NIS
  • Inspection of response data (detection of leakage of critical information)
  • Inspection of uploaded files: Registration of binary (raw data) signatures
  • Inspections to check for file forgery/tampering and creation of new files by path (URI)
  • Security policy for open software (bulletin boards, online shopping mall solutions, blogs, etc.)
  • Detection and blocking of file upload restrictions bypass attacks
  • URI-based IP control (X-Forwarded-For identification)

Scope of Support

Supported OS Supported Web Server/Application
MS Windows
(2003, 2008, 2012, 2016)
- IIS 6.0, IIS 7.0, IIS 8.0, IIS 10
- Apache 2.0, 2.2, 2.4
- Java EE6-certified servers or of higher specification
– Tomcat, Jeus, WebLogic, WebSphere
※ In the case of WAS Agent, only Server 2008 and higher are supported
Linux Kernel 2.6.x and higher
(32bit, 64bit)
- Apache 2.0, 2.2, 2.4
- NGINX 1.8.1, 1.10.X and higher
- Java EE6-certified servers or of higher specification – Tomcat, Jeus, WebLogic, WebSphere

Recommended to

Companies that need to build a powerful security system in line with the latest security technology and trends
Companies that need to detect and block attacks on web vulnerabilities that are difficult to respond to with just firewalls and IPS/IDS
Companies that do not have any in-house employees to manage their servers