Intelligent Web Application Firewall (iWAF)

Web Application Security Intelligence and Machine Learning

The Intelligent WAF Solution

Avi Networks’ Intelligent Web Application Firewall (iWAF) delivers high-performance web application security with point-and-click simplicity that enables customized policy configurations for each application. Avi iWAF leverages the architectural advantages of the Avi Vantage Platform for central policy management, with scale-out elasticity, and closed-loop security analytics.

Customizable Centralized Security Management

Simplify policy customization and administration through central management to equip administrators and security analysts with the tools to enforce the right web application security posture.

Learn More

Multi-Cloud Elastic Security Fabric

Elastic scale with highly performant, automatic scale-out architecture.
The iWAF fabric enforces security through closed-loop intelligence.

Learn More

Automation and Programmability

Protects web applications from common vulnerabilities, such as SQL injection and cross site scripting, while providing the ability to customize the rule set for each application and automate policy configurations with REST API.

Learn More

Real-Time Visibility and Security Analytics

Real-time visibility into application traffic, user experience, security and threat landscape, and application performance to identify and protect against the most sophisticated attacks.

Learn More

Avi’s Intelligent Web Application Firewall
Operational Intelligence Through Machine Learning

Web Application Firewall, or WAF protects web applications from common vulnerabilities while providing the ability to customize the security rules for each application. WAFs provide real-time insights into application traffic, performance, security, and threat landscape. This visibility gives administrators the flexibility to respond to the most sophisticated attacks.

Customizable Centralized Security Management

Administrators and security analysts are equipped with the tools to enforce the right security posture through central management of all distributed iWAF instances.

  • IP protection (GeoIP blocking)
  • Data leakage protection (error message suppression, leakage of personally identifiable information such as credit card or SSN numbers)
  • Input protection (SQL injection, cross-site scripting (XSS), local/remote file inclusion, remote code execution, PHP code injection, path traversal, session fixation)
  • HTTP validation (limit HTTP allow method, encoding bypass detection, HTTP response splitting, HTTP parameter pollution)

Multi-Cloud Elastic Security Fabric

Protect public-facing and internal web applications and APIs with highly performant solution that addresses the most persistent WAF challenges for enterprises.

  • Per-app deployments and elastic scaling across data centers and multi-cloud environments
  • GDPR, HIPAA, and PCI compliance with a scalable and distributed software fabric
  • Distributed web security fabric enforces security through closed-loop intelligence

Intelligent WAF security with point-and-click simplicity
and web-scale performance

The Avi iWAF is an important source of application security enforcement and intelligence. Learn more about iWAF benefits in solution brief:

  • Point-and-click simplicity for policies with central control.
  • Elastic scale with highly performant, automatic scale-out architecture.
  • Granular app security insights on traffic flows and rule matches to enable precise policies.


Download iWAF Solution Brief

Automation and Programmability

Granular security insights on traffic flows and rule matches enable precise policies and one-click customization of rules and exceptions to sharply reduce the problem of false-positive fatigue.

  • Automated attack blocking (scanner detection, brute force attacks)
  • 0-day attacks (Shellshock, httpoxy)
  • Application specific security (Drupal, WordPress)

Real-Time Visibility and Security Analytics

Displays granular, actionable security details from the distributed service proxy fabric to secure web applications in real-time, allow visual policy checks prior to enforcement and comprehensive web application security testing.

  • Visible security details including information about SSL versions and ciphers used in transactions, real-time DDoS attack data, and system health scores
  • Protection from SQL injections, cross site scripting and other threats as identified by Open Web Application Security Project guidelines (OWASP)

Interested in learning more about the Avi Vantage Platform?

Schedule a demo