The award-winning SonicWall Web Application Firewall (WAF) Service enforces defense-in-depth strategy to protect your web applications running in AWS from most common threats using a high performance real-time intrusion scanning engine. It offers businesses a complete, affordable, out-of-box compliance solution for web applications that is easy to manage and deploy.

WAF supports OWASP Top Ten and PCI DSS compliance, providing protection against malicious injection and cross-site scripting attacks, credit card and Social Security Number theft, cookie tampering and cross-site request forgery. Dynamic signature updates and Application Profiling that leverages an active learning algorithm protect against known and zero-day vulnerabilities. Virtual Patching using Custom Rules allows customers to instantly address a vulnerability and avoid attacks that happen while waiting for a security hotfix. SonicWall WAF supports IP Reputation services and Rate Limiting features to block automated and brute-force attacks. Stacked authentication including 2-factor authentication, one-time passwords and SSL client certificate authentication combined with access policies provides granular access control to the web applications.