Deny All WAF
Deny All WAF aggregates and normalizes Deny All WAF events and enables you to analyze Deny All WAF data through the LP_Deny All Web Application Firewall dashboard.
When Logpoint identifies threats, malware or malicious events with a potential risk, it triggers security alerts based on predetermined rules. The automated alert enables you to detect potential threats, malware or malicious events early and take corrective actions against them.
Enhancement
|
Description
|
Issue ID
|
Reference ID
|
|---|---|---|
| Added Syslog Collector based DenyAll log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template. | KB-22679 | - |
Past Releases
Deny All WAF v5.3.0
Release Date: July 18, 2020
Supported On: Logpoint v7.0.0 and later
Download: Deny_All_WAF_5.3.0.pak
SHA256: 316338318e377dd8f3423f83106dda39aae01718bbe6111562a82fb4ba91f6e9
Bug Fix
|
Description |
Issue ID |
Reference ID |
|---|---|---|
| Some Deny All WAF and Monitoring logs were not normalized by DenyAllWAFCompiledNormalizer. | KB-18103, KB-18234 | 68921 |
Deny All WAF v5.2.0
Release Date: August 22, 2022
Supported On: Logpoint v6.7.0 and later
Download: Deny_All_WAF_5.2.0.pak
SHA256: e26e0b65f2081dce790b29622a15028dcddc9c32f2915b6e0d041633040efb47
Bug Fix
|
Description |
Issue ID |
Reference ID |
|---|---|---|
| Deny All WAF package 5.0.0 did not normalize logs. | KB-11184 | 47660, 53321, 53527 |
Deny All WAF v5.1.0
Enhancements
- Deny All WAF now includes a new compiled normalizer DenyALLWAFCompiledNormalizer.
- The field protocol has now been parsed as protocol and protocol_version for the DenyAll WAF logs.
Deny All WAF v5.0.0
Enhancement
A minor update has been done in the Deny All WAF's normalizer for better signature handling.
Support
If you have any questions or require assistance, create a support ticket.
Comments
Article is closed for comments.