Training Registration

This course is designed to provide an instructor-led, immersive classroom approach for participants who want to become proficient in the foundational use of Barracuda WAF-as-a-Service. The course will feature an expansion of the material covered in the on-demand videos from the Barracuda WAF-as-a-Service Foundation and Advanced Tracks, as well as hands-on lab exercises to put the foundational content in real-world  context for all participants.

Agenda

WAF-as-a-Service Overview 

• Overview
• Architecture
• WAF-as-a-Service using your own Containers
• Licensing
• Traffic Flow
• Applications and Application Modes

Setting up WAF-as-a-Service

• Interface Access
• Setup Wizard
  
• Restricting Access
  
• WAF-as-a-Service Modes
  
• DNS Zones
  
• Servers

App Profiles 

• URL Profiles Overview
  
• App Profiles Settings
  
• Extended Match Rules
  
• Data Theft Protection
  
• File Upload Protection and ATP

Bot Protection

• Bot Spam Mitigation
• Honey Pots
• Client Tarpits
• Client Challenges
• Client Fingerprint and Risk Score
• Pre-defined Bots

Account Takeover Protection 

• Credential Attack Protection
  
• Brute Force Protection
  
• Privileged Account Protection
  

Endpoints

• What are Endpoints?
• Let’s Encrypt
• Security Mechanisms

Configuration Tuning 

• Recommendations
• Vulnerability Remediation Service
• False Positives
• Trusted Hosts
  

Logs, Monitoring, and Reports 

• Logs
• Monitoring
• Reports
• Notifications

Violation Responses and Response Pages 

• Role-Based Administration
• License Management
• Custom Block Pages
  

General Security Components

• URL Normalization
• Request Limits
• Cookie Security
• URL Protection
• Parameter Protection
• URL Encryption
• Allow/Deny Rules for Headers
• IP Address Geolocation
• Response Cloaking
• URL Access and Redirects
  

DDoS Protection

• DDoS Basics
• Allow and Block Lists
• Brute Force Prevention
• Web Scraping
• Slow Client Prevention
• Client Evaluation
  

API Security

• API Services
• API Discovery
• JSON Security
• GraphQL
• JWT Validation
• API Response Policies

Traffic Rewrite

• URL Translation
• Request Rewrite
• Response Rewrite
• Body Rewrite
  

Client-Side Protection

• Content Security Policies
• Sub-Resource Integrity
  

Application Delivery

• Load Balancing
• Persistence
• Connection Pooling
• CDN

System Management

• Role-Based Administration
• License Management
• Configuration Snapshots
• GitHub Integration

Audience

Barracuda WAF-as-a-Service - Foundation is designed for technical participants who will be supporting field deployments. System administrators, network engineers, and technical staff who are current Barracuda Networks partners and customers are the main audience for this course

Format

Available in-person or remote Maximum number of participants: 10 students

Duration

2 days

Prerequisites

• Knowledge of DNS, Domain Zones, and DNS Records.
• Knowledge of the most common Application-layer protocols and application services.
• Knowledge of web application technologies and OWASP Top 10 attacks.
• Knowledge of programming languages such as HTML, Java, or SQL is a plus.
• Knowledge of API-based web applications is a plus.
• Knowledge of Content Security Policies is a plus.

Pricing

Please contact your Barracuda Networks Sales Representative for pricing information

Additional Information

This class contains hands-on labs accessible via the Internet. To access the labs, make sure that your client PC is equipped with an RDP client (i.e., Microsoft Remote Desktop Connection) and is allowed to establish outgoing connections on TCP port 33800 – 33801.