en-US
search-icon

Web Application Firewall

SonicWall WAF Series features advanced web security tools and services to keep compliance data unexposed and web properties safe, undisrupted and in peak performance. It applies Layer-7 application delivery capabilities that enable application-aware load balancing, SSL offloading and acceleration for resilience and an enhanced digital engagement and experience.
Web Application Firewall Product Image

Deliver web applications safely and at high-speed without disruption

SonicWall WAF Series features advanced web security tools and services to keep compliance data unexposed and web properties safe, undisrupted and in peak performance. It applies Layer-7 application delivery capabilities that enable application-aware load balancing, SSL offloading and acceleration for resilience and an enhanced digital engagement and experience.

Legend: S — Standard,  O — Optional,  N — Not Available

Website Model PRO SMALL MEDIUM LARGE
Licensed Capacity per Month 10GB 50GB 200GB 500GB
Close Overview
ECONOMY OF SCALE Image

ECONOMY OF SCALE

SonicWall WAF Series provides economy of scale benefits of virtualization and can be deployed as a virtual appliance in private clouds based on VMWare or Microsoft Hyper-V; or in AWS or Microsoft Azure public cloud environments. This gives organizations all the security advantages of a physical WAF with the operational and economic benefits of virtualization.

SonicWall Web Application Firewall Video Datasheet

The SonicWall Web Application Firewall offers the in-depth defense you need to protect web applications running in a private, public or hybrid cloud environment

WEB APPLICATION THREAT MANAGEMENT Image

WEB APPLICATION THREAT MANAGEMENT

  • Shrink attack surface with full management and control of web application traffic
  • Apply additional security layers to existing web applications without redevelopment
  • Interrogate the behavior and logic of web communication beyond protocol activities
  • Detect and alert on anomalies in web application behavior
  • Make informed security policy decision with visualization, analytics and reporting
WEB APPLICATION PROTECTION Image

WEB APPLICATION PROTECTION

  • Protect against known and zero-day vulnerabilities with virtual patching and custom rules
  • Defend against latest vulnerabilities and threats outlined by OWASP, including SQL injection and cross-site scripting (XSS)
  • Stop attackers from spreading malware and initiating C&C shell session
  • Strong session management and authentication requirements such OTP, 2FA and SSO
  • Preserve web servers integrity and performance against application DoS/DDoS attacks
DATA LEAK PREVENTION (DLP) Image

DATA LEAK PREVENTION (DLP)

  • Prevent data theft via data masking and page-blocking
  • Bar attackers from gaining access to users’ accounts and all accounts on web servers with extensive access security controls
  • Forbid invalidated redirects that send users to unsafe webpages and unauthorized page forward to restricted pages
  • Restrict access to internal resources based on host, subnet, protocol, URL path, and port
ACCELERATE APPLICATION DELIVERY Image

ACCELERATE APPLICATION DELIVERY

  • Enable caching, compression and other HTTP/TCP optimizations to accelerate application delivery
  • Reduce workload and boost performance by offloading SSL transactions
  • Perform Layer-7 load balancing to distribute the load across clustered web servers
  • Monitor health of the web servers and failover traffic to ensure high availability
CAPTURE ADVANCED THREAT PROTECTION Image

CAPTURE ADVANCED THREAT PROTECTION

  • Stop zero-day attacks using four unique dynamic threat analysis engines
  • Hold suspicious files, find malicious activities and return a verdict
  • Analyze executable programs (PE), DLL, PDFs, MS Office files, archives, JAR and APK
  • Resist advanced evasion tactics and maximize zero-day threat detection
CROSS-VECTOR THREAT INTELLIGENCE Image

CROSS-VECTOR THREAT INTELLIGENCE

Leverage SonicWall Capture Labs which gathers, analyzes, and vets cross-vector threat information from a variety of sources, including a million globally placed sensors. This culminates in our ability to stop cross-vector threats across our broad product portfolio including SonicWall WAF. Coupled with Capture ATP, we defend your web applications from known and unknown threats.