eCDN Web Application Firewall
Embedded Content Delivery Network (eCDN) Web Application Firewall (WAF) helps protect your storefront using extra layer 7 protection.
- WAF Protection
Enabled by default when creating proxy zones, WAF is a layered approach to security and an important component of a multitiered approach to bad actor mitigation. - WAF Threat Response
When responding to a potential web application threat, eCDN WAF looks at each incoming request, assigns the request a threat score, and responds appropriately. Each incoming request that triggers an OWASP rule increases the overall threat score. Some rules impact the score more than others. - Using WAF for the First Time
When using WAF for the first time, we recommend that you run WAF in Simulate mode for at least one week. - Modify eCDN WAF Settings
The eCDN Web Application Firewall (WAF) protects your storefront by analyzing and interpreting your HTTP/s traffic. WAF stops application level attacks that attempt to exploit code-level vulnerabilities. Configure the security sensitivity level, and decide what action WAF takes when a suspicious web request attempts to access your storefront. - WAF and Network Traffic Logs
The logs contain all eCDN network traffic, not just the traffic that WAF identifies. You can track IP-reputation blocked traffic and analyze how much of your traffic does not trigger WAF settings. - eCDN-WAF Log OCAPI References
You can request eCDN-WAF log files from Open Commerce API (OCAPI). Each realm supports up to 24 pending log request downloads.
Infocenter Retirement: On June 30, 2023, the Infocenter was retired, and documentation currently hosted on the Infocenter will be published to Salesforce Help, Commerce Cloud Developer Center, and Salesforce B2C Commerce Developer Documentation Resources. For more information, see the release note.