General WAF Configuration

General WAF Configuration

Sense Defence WAF is a layered WAF engine which prioritises and detects malicious attacks in different ways. 



General Settings

In this section, WAF can be enabled/disabled 'globally' or enable/disable WAF engines individually.   Customers can choose which WAF engine is more appropriate for their use.

There are other features which users can customise according to the requirements.

Sense Defence WAF

  1. Enable/Disable
  2. WAF Action: Set the WAF actions - Detect/Block/Challenge

Machine Learning WAF

  1. WAF Sensitivity - Set the AI WAF sensitivity to desired level. 
  2. WAF Action -  Set the WAF actions - Detect/Block/Challenge

OWASP Signature WAF

  1. OWASP Anomaly Score: Enable/Disable
  2. Blocking Early
  3. WAF Action - Set the WAF actions - Detect/Block/Challenge
  4. OWASP Paranoia Level
  5. WAF Level
  6. Anomaly Score Selection

    • Related Articles

    • Onboarding a Site to Sense Defence WAF

      Sense Defence’s Web Application Firewall (WAF) offers both security and acceleration at the web application level. To begin the process of securing and speeding up a web application, a “site” must be added to a Sense Defence customer organisation. ...

    • Onboarding Site to Sense Defence WAF

      Sense Defence’s Web Application Firewall (WAF) offers both security and acceleration at the web application level. To begin the process of securing and speeding up a web application, a “site” must be added to a Sense Defence customer organisation. ...

    • SSL Configuration for Websites

      It is very important to enable SSL certificate for security and performance. Sense Defence made it easy to deploy SSL certificates through WAF dashboard. Follow the steps below to enable SSL/TLS protection for your application. Select SSL Settings ...

    • Recommended SSL Configuration

      By default, all sites onboarded to Sense Defence are enabled with standard recommended security standards. There are no additional configurations needed to get A+ rating in Qualys SSL labs. Howevere it is recommended to configure HSTS settings as ...

    • Sense Defence OWASP Core Rule Early Blocking

      OWASP released early blocking feature for its core rules sets in Sprint 2022 and Sense defence adapted the changes immediately on its core rules selections. This feature is available for all users - including our community edition customers at free ...