Salesforce B2C Commerce 24.7 > Administering Your Organization > Site Preferences > Embedded CDN

eCDN Web Application Firewall

Embedded Content Delivery Network (eCDN) Web Application Firewall (WAF) helps protect your storefront using extra layer 7 protection.

  • WAF Protection
    Enabled by default when creating proxy zones, WAF is a layered approach to security and an important component of a multitiered approach to bad actor mitigation.
  • WAF Threat Response
    When responding to a potential web application threat, eCDN WAF looks at each incoming request, assigns the request a threat score, and responds appropriately. Each incoming request that triggers an OWASP rule increases the overall threat score. Some rules impact the score more than others.
  • Using WAF for the First Time
    When using WAF for the first time, we recommend that you run WAF in Simulate mode for at least one week.
  • Modify eCDN WAF Settings
    The eCDN Web Application Firewall (WAF) protects your storefront by analyzing and interpreting your HTTP/s traffic. WAF stops application level attacks that attempt to exploit code-level vulnerabilities. Configure the security sensitivity level, and decide what action WAF takes when a suspicious web request attempts to access your storefront.
  • WAF and Network Traffic Logs
    The logs contain all eCDN network traffic, not just the traffic that WAF identifies. You can track IP-reputation blocked traffic and analyze how much of your traffic does not trigger WAF settings.
  • eCDN-WAF Log OCAPI References
    You can request eCDN-WAF log files from Open Commerce API (OCAPI). Each realm supports up to 24 pending log request downloads.

Infocenter Retirement: On June 30, 2023, the Infocenter was retired, and documentation currently hosted on the Infocenter will be published to Salesforce Help, Commerce Cloud Developer Center, and Salesforce B2C Commerce Developer Documentation Resources. For more information, see the release note.