All Sites - Health Summary page

My Configuration status showing an error, how do I fix it?

Click the link below the error icon and follow the instructions specified in the pop-up window to fix the issue.

Why is Routing change required?

The traffic must be routed through the public IP address of the AMI that you just launched to secure your website and to use the Indusface Total Application Security that monitors all the traffic to detect the vulnerabilities in order to protect the web applications from attacks.

My last scan status shows 'Not Ready' on the portal page, how do I fix it?

If there are any issues in the configuration, then the Last scan status will be displayed as Not Ready. Click the link below the error icon in the Configuration Status column and follow the instructions specified in the pop-up window to fix the issue. Once the issue is resolved, initiate a scan for the website. After the scan completes, it displays the time of the last scan performed.

What does it mean the health status of my website is gray or green or red or yellow?

If the health status of the website is

  • Gray        -         Indicates assessment is pending, initiate a scan to find out the health status of the website.

  • Green      -        Indicates that your website is protected against found vulnerabilities.

  • Red          -        Indicates there are high or critical vulnerabilities without protection.

  • Yellow     -        Indicates there are only medium vulnerabilities without protection.

    How can I add a new website?

    In order to add a website, follow the below procedure.

    1. Go to All Sites-Health Summary page and click on Add Website.

      1. If the license is not valid, a pop-up will be displayed. To continue with the process either get a new license or renew the existing one.

    2. By providing the valid license you will see the Add Website pop-up.

    3. As shown in the picture, provide the details as mentioned below.

      Parameter Description
      License Code Select the valid License Code for the new website.
      Domain Name Provide the Domain Name
      Deployment Type Mention the Deployment Type depending on your requirement.
      Forwarding IP Address/URL Provide the IP address of the website in Forwarding IP address/URL
      Scan Url Scan URL will be populated automatically but if you want to change it, you can.
    4. Click NEXT and select the Incoming and Outgoing traffic.

      If your incoming and outgoing traffic is HTTP, click Next and Submit as there is no SSL Configuration.

      If incoming or outgoing traffic is HTTPS then you need to perform SSL Configuration.

      Paste the Private Key, Certificate, and Chain Certificate(optional) in the respective fields and click Submit. If you want to skip the SSL Configuration, then click Skip before adding the details.

      Check the information, click back to modify the content, otherwise Click Submit.

    5. Initiate scan for the new website by clicking Scan Now to detect the web application vulnerabilities, malware, and business logic flaws.

      What are all attacks considered DDOS?

      Any attack category with the DDOS check box checked. For example, IMO is DDOS and BOT attacks.

      Apart from this “IP Blacklist” and “Geo Blacklist” are also considered as DDOS attacks.

      Which are the generic rules in block mode by default and which are in log mode?

      Both “Geo” and “IP” blacklisting will be in block mode.

      If we talk more about DDoS attack then I can see two types of DoS rules.

      1. DoS rules by default in CRS which cause Log Mode by default (i.e. IP Threshold limiting Policy)

      2. DoS Rules requested by customer which cause Block Mode by default (Custom Threshold limiting Policy per customer)

How did we do?