Your web resource and its content must be protected against modern DDoS attacks and against other malicious actions. We continue integrating new security options into our CDN service.
G-Core Labs CDN users are protected against DDoS attacks by default both at the network layer (L3) and at the transport layer (L4).
The high bandwidth of our network and advanced load balancing allow us to distribute illegitimate traffic across many servers, thus neutralizing its harmful effect.
Yet we would like to protect not only our clients’ servers but also their web applications. This is why we have integrated basic web protection working on the WAF principle into the CDN control panel.
Web Application Firewall (WAF) is a protection system for web applications that prevents hacking and unauthorized access to confidential data.
Any application code may have some errors. Malicious users are increasingly using them to gain unauthorized access to user data. Totally blocked ports, addresses, or protocols (this is how interconnected firewalls work) can disable important legitimate services. This is why a modern firewall must be able to analyze the contents of the packages and to better “understand” how applications operate.
Thanks to WAF, you can timely detect and prevent attacks on your web resource, thus eliminating the opportunity for malicious users to take advantage of its vulnerabilities.
Basic web protection prevents the most common threats listed in the current OWASP Top 10.
Open Web Application Security Project (OWASP) is a nonprofit organization and an open Internet community dedicated to enhancing web application security.
OWASP Top 10 is an all-embracing list of the ten most common web application vulnerabilities. It gets regularly updated and allows application developers to always be informed of the most critical risks and threats, their consequences, and the countermeasures available.
You can enable this option using the toggle in the Web protection section of the CDN control panel.
The option is currently being beta-tested. You can participate in the beta testing for free. Note that you won’t be able to customize the rules to your needs, and the number of secure requests available for a single resource may be limited.
Develop your web project, and we will make sure that it is available and loads fast worldwide.
Enable the Basic web protection option and be sure that your web resource is protected not only against DDoS attacks but also against malicious users trying to take advantage of its vulnerabilities.