Web Server - Configuration

What can I do here?

Use this window to configure settings for the web server, such as operating system, application engines, port configuration, and the enforcement points that protect it.

Getting Here - Object Explorer > New > Host > Servers > Select Web Server > Web Server

Understanding Web Servers

Defining Web server properties per host makes it possible to define granular protection per Web server, in addition to the global protection settings configured via Web Security.

Defining protection settings per Web server is also an easier and more intuitive way of defining application security, than using a resource and placing the resource in a rule in the Security Rule Base.

Note that you should still define Access control in the Rule Base, in order to restrict the allowed source and destination of HTTP connections.

Web Server Options

Operating System
Specifies the operating system that the Web server host is running. The Web Security Malicious Code Protector is only effective for Web servers running on the following OSs:

Windows

x86 Linux

SPARC Linux.

SPARC Solaris

Other
Application Engines - Defines the Web application engines running on this Web server. If any of the engines defined in the Error Concealment protection are not running on this Web server, then Web Security will not look for patterns relevant to that engine on this Web server. Proper configuration of this field optimizes Web Security performance.
Ports Configurations - Defines whether or not this Web server uses the standard port 80. If it uses other ports, specify them here. Note that you must allow all HTTP ports in the Security Rule Base.
Note - Adding https port (tcp 443) will not affect Web Security protections since https connections are encrypted and Web Security protections cannot be enforced on encrypted protections.
Protection - Specifies the enforcement points that protect this Web server. Licensing is enforced by counting the number of Web servers that are protected by each gateway. If *All is specified, the number of counted Web servers is incremented for all gateways that enforce Web Security features.