General Protection
WAF
The WAF module applies signature-based detection, anomaly detection, and AI-driven behavioural analysis to identify and block malicious traffic.
WAF Monitoring Mode
WAF monitoring mode puts WAF under a separate monitor mode when a certain website works under block mode. When enabled, despite WAF taking no action on abnormal requests, it still keeps records in the Analytics.
WAF Protection Policy
MaxiSafe provides predefined WAF protection policies with various security levels, allowing administrators to apply rules based on security requirements.
- Basic (Default Option) – Enforces fundamental protections against common web threats.
- Standard – Expands rule coverage to include additional filtering mechanisms for increased threat mitigation.
- Strict – Implements the most comprehensive security controls, reducing false negatives at the cost of higher sensitivity.
- Basic Plus – Extends the Basic policy with additional AI-driven detection enhancements.
- Standard Plus – Enhances the Standard policy with advanced heuristics and behavior-based blocking.
- Monitoring – Logs threat data without blocking traffic, useful for security audits and policy evaluation.
Selecting an appropriate WAF Protection Policy ensures the right balance between security enforcement and operational flexibility, reducing attack exposure while maintaining application availability.