# Web Application Firewall (WAF) **WAF** is Medianova’s intelligent web security layer that protects your applications from malicious traffic, bots, and exploits. With **real-time filtering**, **custom rule control**, and **built-in analytics**, it helps you prevent attacks before they reach your origin servers. #### Why Choose WAF? Medianova WAF combines **ease of use**, **robust protection**, and **edge-level performance** to keep your web applications secure. Unlike standard firewalls, WAF protects against both **network** and **application-layer** attacks. * **Edge-level protection** – All traffic is filtered at Medianova’s global CDN edge before it reaches your origin. * **Managed Rules** – Constantly updated rulesets by Medianova’s Security Team, including OWASP Top 10 protections. * **Custom Rules** – Define your own rules to block, allow, or log specific requests. * **Real-time defense** – Detect and mitigate attacks instantly without affecting legitimate traffic. * **Actionable analytics** – Gain visibility into threats, attack sources, and triggered rules through the Control Panel. #### Key Features * **OWASP Top 10 Protection** – Shields against SQL Injection, XSS, and other common web vulnerabilities. * **Custom Rule Engine** – Create granular policies based on IP, URI, headers, or user agents. * **Monitoring Mode** – Observe how rules behave before full activation. * **Instant Mitigation** – Block or log attacks in real time with no latency impact. * **Integrated Analytics** – Visual dashboards for traffic and threat insights. * **False Positive Control** – Fine-tune rules to balance protection and accessibility. #### Use Cases * **Web Application Security** – Protect public websites and portals from injection and XSS attacks. * **API Protection** – Filter and control requests to your backend APIs. * **E-commerce Security** – Prevent data breaches, bot abuse, and checkout exploitation attempts. #### Built for Modern Web Security Medianova WAF delivers **enterprise-grade web protection** that’s easy to deploy and manage through the [**Medianova Control Panel**](https://cloud.medianova.com).\ It helps you stay secure without adding complexity — protecting your applications from the edge, in real time. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://clients.medianova.com/products/security/web-application-firewall-waf.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.