18. Activate the Subscription Status
• PhysicalAppliances
• Clickthelinkinthismessage warningyouthatyoumust activatetheWAF
• Fill in the required fields in the pop-up window and click Activate
• If the WAF cannot communicate directly to Barracuda Central servers, note the
Activation Code displayed
• IntheSubscription StatusoftheBASIC>Status page
• Verify that your subscriptions are Current
• If required, enter the Activation Code and then click Activate
• 3.3 – Initial Configuration
19. Activate the Subscription Status
• VirtualInstances
• Configure theTCP/IPSettings inthe LocalConsole Interface
• Make sure that the VM can reach the Internet
• EnterthelicensetokenandtheDefaultDomainintheLicensing section
• 3.3 – Initial Configuration
22. Services Overview
• Service:a logical projection of aReal Server application
• RealServer:the physical/virtual entitythat hostsacertain application
• VIP:theVirtualIP Addressassociated to aService
• 3.4 – Services
WAF
End Users Real Server
HTTP
Service
HTTP
VIP
24. SSL Services
• SSLSessions will be terminated attheWAF
• Certificates are stored on theWAF
• 3.4 – Services
WAF
HTTPSVIP
Tommy
Web Application
HTTPS
HTTPS HTTPS
25. Instant SSL
• Securesan HTTP webapplicationwith HTTPS
• Creates twoservices withsame VIP (HTTP[80] / HTTPS[443])
• RedirectsHTTP requeststo theHTTPS Service
• RewritesHTTP to HTTPS in response body
• 3.4 – Services
WAF
HTTP
HTTPS
VIP
Web Application
HTTP
Redirect to HTTPS
1st HTTP Request
HTTPWT
Response Rewrite
Tommy
26. WAF
Perfect Forward Secrecy (PFS)
• Generatesrandompublic keyspersession forthekeyagreement
• The connection must be established witha DHE handshake
• When enabled, non-ECDSACiphersarenot used
• 3.4 – Services
HTTPS
HTTPS
Backend Servers
John
Tommy
session1
session2