Barracuda WAF-as-a-Service can create several reports, displaying data in both graphical and tabular formats to help you understand the traffic approaching your applications. You can create reports to run on a regular schedule or run reports on demand.
Note that the graphs display up to ten results for each report. The tables show all of the available data.
To Schedule a Report
To schedule a report:
On the Barracuda WAF-as-a-Service web interface, click REPORTS at the top of the page.
On the Reports page, click Schedule and specify the information for the report:
Report Type - Select the type of data for which you want to generate the report.
Time Frame – Select the time range for the report. Options include Last Hour, Last 24 Hours, Last 7 Days, Last 14 Days and Last 30 Days.
Applications – Select the application(s) for which the report needs to be generated.
Frequency - Specify how often the report needs to be generated.
Daily - Set the day and time for the report to be run. When you set Every to 3, the report runs automatically on every third (3rd) day at the specified time and covers the web activity that occurred for the selected report type.
Weekly - Set the day and time for the report to be run every week. The report runs automatically at the specified day and time every week and covers the web activity that occurred during the past 7 days for the selected report type.
Monthly - Set the date and time for the report to be run every month. The report runs automatically at the specified date, and time every month and covers the web activity that occurred during the past one month for the selected report type.
Recipients - Specify the email address(es) of the recipient(s) to which the scheduled report(s) needs to be sent.
Click Schedule.
To Generate a Report
On the Reports page, do the following:
Select the time range for the report.
Select the type of data for the report from the Report Type drop-down list.
Select the application(s) for which the report needs to be generated.
Click Run Report. The report gets displayed in a new browser tab.
To save the report as a PDF – Click Download. A PDF of the report downloads to your default download location.
Working with Scheduled Reports
Scheduled reports you created using the steps above are displayed in the Scheduled Reports table.
Click the three dots at the end of a row to take one or more actions on that report:
Run Now – Run the report and send the results to recipients immediately.
Edit Schedule – Edit the report specifics, as described above.
Delete Schedule – Delete the report.
Report Types
The Barracuda WAF-as-a-Service provides the following report types:
Top Attacks By Category report displays the number of attacks for the categories such as forceful browsing, XSS injections, etc., for the specified application(s) and time frame.
Top Attacking Clients report displays the number of attacks from the client(s) within the specified time frame.
Top Attacked URLs report displays the top-attacked URLs based on the requests received.
Top Attacking Countries report displays the number of attacks from different countries within the specified time frame.
Requests Over Time report displays the number of requests received by the selected applications within the specified time frame. It includes metrics for:
Server Success: The total number of requests that were received and successfully processed by the server.
Server Error: The total number of requests that the server could not process due to an unexpected condition.
Total Requests: The total number of requests made to the application.
Denied Requests: The number of requests that were denied access to the application endpoint. Note: Web Firewall Logs with action as "DENY" are considered for Denied Requests.
The Total Requests metric encompasses all access logs. However, the Success and Error metrics only account for access logs with a response type of Server. Logs with a response type of Internal are excluded from the Success and Error metrics but are included in the Total Requests.
Bandwidth Over Time report displays the bandwidth usage by the selected applications within the specified time frame.
Bandwidth Summary report displays the bandwidth usage summary for all applications in the current user account within the specified time frame.
Executive Summary report provides a comprehensive overview of application security status, advanced security feature utilization, attack origins, bandwidth data, and attack classifications, demonstrating the value of WAF-as-a-Service in safeguarding company assets. The executive summary displays the data for all applications in the current user account. Users with the Executive role can generate the executive summary report for the last 14 days and 30 days.
In the Executive Summary report, security features (DDoS, API and BOT) display the green check mark icon ( ) if the application is protected. If not, the orange warning icon ( ) is displayed under the security feature name.
To protect applications from bot attacks, ensure that the following settings are enabled:
Referrer Spam - (Under BOT PROTECTION > Bot Attacks).
Client Evaluation - (Under BOT PROTECTION > Bot Detection > Client Challenges).
Bot Detection (including Insert hidden links in response, Insert disallowed URLs in robots.txt, and Insert delay in robots.txt) – (Under BOT PROTECTION > Bot Detection).
Advanced Bot Protection (supported only in premium license) – (Under BOT PROTECTION > Dashboard).
To protect applications from Distributed Denial-of-Service (DDoS) attacks, ensure that the DDOS component is added.
To secure your API endpoints, JSON profiles under APP PROFILES should have the following settings enabled:
Status
Block Attacks
Validate Key