4 Ways GigaSECURE Helps Imperva Web Application Firewall Deployments
Hackers love web applications, which can offer easy access to valuable—oftentimes business critical—data. But in their way stands the Imperva SecureSphere Web Application Firewall (WAF), a remarkable first line of defense against hackers targeting web‐application traffic.
Deploying and managing multiple SecureSphere devices, however, can be challenging, especially at scale. That’s where Gigamon GigaSECURE®, the industry’s first Security Delivery Platform, comes in.
According to Phil Griston, Director of Alliances and Business Development at Gigamon, “Imperva is far and away the market leader in the WAF space, which means Gigamon [customers] are perfectly positioned to benefit from the Imperva SecureSphere–GigaSECURE interoperability.”
Read on to discover four key ways in which you can help boost any SecureSphere deployment with GigaSECURE.
SecureSphere and GigaSECURE: Better together
According to Imperva, the “SecureSphere Web Application Firewall identifies and acts upon dangers maliciously woven into innocent‐looking website traffic; traffic that slips right through traditional defenses.”
“GigaSECURE, for its part, brings scalability, manageability, and resilience to any SecureSphere deployment,” says Griston. Here’s how it works:
- Filtering out unnecessary traffic: Using the built‐in Application Session Filtering feature, GigaSECURE filters out non‐web traffic (such as voice packets) to route only web traffic to SecureSphere WAFs.
- Intelligently load balancing high‐bandwidth flows across multiple devices: If a traffic flow exceeds the capacity of a SecureSphere appliance, GigaSECURE intelligently load balances that flow across multiple SecureSphere devices. This way, even40G and 100G links can be safely monitored, without overloading a particular SecureSphere device.
- Aggregating data: GigaSECURE aggregates smaller traffic flows—while maintaining traffic source and destination information—and sends them to a single SecureSphere device for inspection.
- Maintaining fault tolerance and manageability: GigaSECURE’s inline bypass functionality can be utilized for advanced fault tolerance, particularly in implementations that require chained security devices to inspect the same traffic.
Both products are excellent on their own, but together they create a powerful joint solution that offers maximum security without sacrificing performance.
Download the deployment guide
And now you can download a deployment guide providing step‐by‐step instructions for deploying Imperva’s SecureSphere WAF inline with an HC2, put together by Gigamon and Imperva. This great resource can help you and your customers see how a joint solution would work in practice in their specific environments.