Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

WAF management method and system

A management method and virtual machine technology, applied in the WAF management system and system field, can solve the problems of expensive hardware WAF, cumbersome software WAF deployment, lack of monitoring and logs, etc., to avoid temporary definition and configuration tasks, realize online modification, The effect of improving efficiency

Pending Publication Date: 2020-11-24
SF TECH
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Due to the high price of hardware WAF, slow rule update, poor flexibility and technical "black box", the technical problems of current software WAF are as follows:
[0004] Software WAF deployment is cumbersome and inconvenient to use; lack of monitoring and logs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • WAF management method and system
  • WAF management method and system
  • WAF management method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0084] Please refer to figure 1 It is a functional block diagram of an embodiment of a WAF management system of the present application. The WAF management system provided in this embodiment includes a front end 100, a WAF back end 200, a task center 400 and a resource pool 300;

[0085] The front end 100 uses vue.js as a framework, and Vue.js is a library for building an interactive Web (web page) interface; the WAF backend 200 uses Python's flask as a framework; Flask is a lightweight Web application framework.

[0086] The WAF backend 200 is equipped with api components, such as a restful-api interface provided for the front end, and receives requests such as log query, statistics, WAF instance creation, modification, and status monitoring sent by the front end 100; the api component can also be set for example. The API interface provided by the external system.

[0087] The resource pool 300 is also formed by using the python language flask framework to provide a restful...

Embodiment 2

[0106] Based on the basic deployment of the above-mentioned WAF management system provided by this application, the first implementation of the WAF management method provided by this application is as follows figure 2 Shown:

[0107] The WAF management method provided in this embodiment is used for the process of creating a WAF instance, including the following steps:

[0108] s110. Receive the WAF instance creation request sent by the front end, the WAF instance creation request includes WAF instance rules and deployment information;

[0109] S120. Determine the quantity information of each WAF component and the task name information corresponding to each WAF component according to the WAF instance rules and deployment information; WAF instance creation request of one WAF component waf_server and two WAF components rsa_server; for example, the task name information corresponding to WAF component waf_client is deploy_waf_client;

[0110] s130. Determine the number of virtua...

Embodiment 3

[0125] like Figure 4 As shown, this embodiment further provides a method for modifying a WAF instance on the basis of Embodiment 1: according to the technical solution provided by the embodiment of this application, the following steps are also included:

[0126] s210. Receive the WAF instance modification request sent by the front end. The WAF instance modification request includes WAF instance name information, WAF instance rules and deployment modification information;

[0127] S220. Extract the information of the WAF component to be modified and the corresponding task name information according to the WAF instance rules and the deployment modification information;

[0128] s230. Query the virtual machine account information and virtual IP corresponding to the WAF instance name information and the WAF component to be modified from the WAF instance database;

[0129] S240. Send the extracted task name information and corresponding virtual machine account information to the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a WAF management method and system. The method comprises the following steps: receiving a WAF instance creation request sent by a front end; determining quantity information ofeach WAF part and task name information corresponding to each WAF part according to the WAF instance rule and the deployment information; determining virtual machine quantity information and virtualIP quantity information according to the determined quantity information of the WAF parts; extracting virtual machine account information and virtual IPs of the corresponding number from a resource pool according to the determined virtual machine number information and virtual IP number information; sending the task name information of each WAF part and the corresponding virtual machine account information to a task center; according to the method, when the WAF instance is created, the virtual machine and the virtual IP can be directly called from the resource pool, temporary definition and task configuration are avoided by setting the independent task center, and the efficiency of creating the WAF instance is further improved.

Description

technical field [0001] The present disclosure generally relates to the technical field of information security, specifically relates to the technical field of firewall, and especially relates to a WAF management system and system. Background technique [0002] As Web applications become more and more abundant, the traditional firewall-based security protection is becoming more and more weak in the face of diverse Web attacks, resulting in WAF (Web Application Firewall), which implements a series of HTTP-targeted / HTTPS security strategy to provide security assurance products for Web applications. [0003] There are two main types of WAFs: hardware WAFs that use dedicated hardware and software WAFs that use general-purpose servers + software. Due to the high price of hardware WAF, slow rule update, poor flexibility and technical "black box", the technical problems of current software WAF are as follows: [0004] Software WAF is cumbersome to deploy and inconvenient to use; ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F9/455H04L29/06
CPCG06F9/45558H04L63/02G06F2009/45575G06F2009/45595G06F2009/4557
Inventor 林国峰李大强万国圣段党红韩武君杨文笑罗运来詹漫芬
Owner SF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com