When you set up a new application on Barracuda WAF-as-a-Service, your application is assigned a default "best practices" security policy by Barracuda. You can customize this default security policy by adding components for the features you want to customize.
Once you have added a component, you can configure that feature as needed. Keep in mind that changing component configuration might reduce the security of your application or even cause application errors. To restore your system to the "best practice" configuration at any time, remove the component in question. You can always add the component again, if needed.
For information on adding and removing components, refer to How to Add or Remove a Component.
The following components are available to add to Barracuda WAF-as-a-Service: