Can a firewall appliance block http requests?



  • Is it possible to use a firewall appliance as WAF? To make it more clear, lets think of a model like this:

    Internet > router > Firewall > webserver

    Can the firewall act as a WAF and block some special http requests according to some rule sets?

    My question is about the possibility of this matter, maybe there are a few firewalls which can and many others that can't.



  • Yes. Conceptually, a firewall appliance (or a firewall application) will be able to distinguish between HTTP and HTTPS requests and, in the case of HTTP requests, will be able to view all the data being transmitted (not just the domain and IP). It can then block or modify any data going through. Not all firewalls have this capability, however. You will need to find one that meets your requirements.

    You can also do this with HTTPS requests if you have a firewall that supports TLS interception, but then you'll need to install the firewall appliance's root certificate into your browser for it to trust it.


Log in to reply
 

Suggested Topics

  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2