Core Web Application Firewall (WAF) Service
For Private Cloud customers, Armor manages a web application firewall (WAF) service to provide detection and protection against various types of malicious application layer attacks. Armor maintains a standard set of curated signatures applied to any customer site that is configured to be inspected by this service. For customers interested in a WAF that is dedicated and/or tuned to their applications specifically, please see the Advanced WAF service in the AMP Marketplace. Please refer to Armor's Service Descriptions for more information about the customer-owned responsibility of that service.
Supported Ciphers
The documentation for the SSL ciphers supported by this service* are found here.
The ciphers listed pertain only to the F5 Networks-based version of this service that launched in Q3 2021. If you are unsure of which version of the Core WAF service you are using, please reach out to Armor Support for assistance.
For users of previous versions of the Core WAF service, Armor supports the following ciphers:
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_128_GCM_SHA256
Setup
To request that a site be configured for inspection by the Core WAF service, please open a ticket with Armor Support.
Notes about this service
The service inspects traffic on port 443 only. Unencrypted traffic, such as traffic sent over port 80, will not be inspected.
For any site configured for inspection, you will be given a public IP address to use for pointing DNS records to for your site name.
Any public IP address(es) currently assigned to servers for other purposes, such as FTP, should continue to be used for those purposes.