Hello,
We have Juniper srx340 firewall on our perimeter network. We have some internet facing application which is available form all internet. Now we have additional security requirements which we should implement on Juniper firewall. Requirements are described below:
Examine the system configuration settings and interview responsible personnel to verify that an automated technical solution that detects and prevents web-based attacks (for example, a web-application firewall) is in place as follows: - Is situated in front of public-facing web applications to detect and prevent web-based attacks. Web-application firewalls filter and block nonessential traffic at the application layer. Used in conjunction with a network-based firewall, a properly configured web-application firewall prevents application-layer attacks if applications are improperly coded or configured. This can be achieved through a combination of technology and process. Process-based solutions must have mechanisms that facilitate timely responses to alerts in order to meet the intent of this requirement, which is to prevent attacks.
We need your advise how we can implement these security requirements on Juniper firewall.
------------------------------
MICHAIL PERELMAN
------------------------------