Forum Systems Sentry WAF
November 01, 2011
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Advanced protection functions for web applications.
- Weaknesses: Expensive.
- Verdict: This one is pricey, but its feature set ameliorates that somewhat.
The Sentry WAF from Forum Systems is a full-feature web application firewall that provides comprehensive protection to almost any web application, including HTML, JSON, XML and SOAP. This product is designed to protect against the new threats facing complex web applications, and to keep the backend of those apps safe from being exploited by hackers.
We found it to be reasonably easy to install. The initial configuration is done through a terminal session and, at the end of a short wizard, the appliance has an IP address and all the basic configuration information needed to be deployed in the network. Once deployed, all further configuration is done via the easy-to-navigate, web-based interface.
This product offers a lot in terms of deployment flexibility. While the platform itself is a physical appliance, customers also can access a virtual appliance for deployment testing and development. Once the configuration is complete on the virtual appliance, it can be exported and then imported directly into the physical appliance. This functionality guarantees that policies are tested completely before being deployed in production.
Documentation includes well-organized and easy-to-follow installation and appliance administrator guides. The installation guide provides excellent detail on the setup process of the appliance and how to deploy it in the network, while the administrator guide offers in-depth configuration and management information.
Forum Systems lends support to customers through an agreement. Customers can purchase eight-hours-a-day/five-days-a-week or 24/7 assistance plans. Contracts also include access to an online portal that includes resources, such as a knowledge base, FAQ section and forum.
At a price of $64,000, this appliance is quite pricey for most organizations. However, we find it to be a good value for the money based on its comprehensive feature set and advanced application protection functions.
Sign up to our newsletters
SC Magazine Articles
- U.S. spy program targeting Americans' mobile phones, report says
- Microsoft report explores dangers of running expired security software
- Survey: real-time SIEM solutions help orgs detect attacks within minutes
- Vulnerabilities identified in three Advantech products
- State Department hack may be tied to White House network breach
- Operators disable firewall features to increase network performance, survey finds
- Waste no time patching Windows Schannel, OLE bugs, experts warn
- Study: 68 percent of healthcare breaches caused by loss or theft of devices, files
- Spin.com redirects to Rig Exploit Kit, infects users with malware, Symantec observes
- Upping the ante: PCI Security Standard
- Study: Third of employees use company devices for social media and online shopping
- 'DoubleDirect' MitM attack affects iOS, Android and OS X users
- Swedish appeals court nixes Assange's plea
- Critical XSS vulnerability addressed in WordPress
- The Internet of Things (IoT) will fail if security has no context