Use WAF and IPS concurrently.


IPS is only supported for HTTP/HTTPS. So are all of IPS protections included in the WAF?
If configured the WAF function, is it necessary to configure IPS?


1 comment

Mark Deegan

Hello Hoshino.Shinichi,

The WAF functionality is a more specific filter for vulnerabilities for service at layer 7. i.e. the IIS WAF rules function is specifically designed to prevent exploits in IIS web servers and deny them. You can create custom rules with this WAF functionality and add them to the list and can have specific rule sets for you services.

The IPS on the other hand is more general and is based on a non-configurable SNORT rule package. These technologies supplement each other and can be enabled for a service together.