eMARA features

Complete Application Delivery Reverse Proxy

  • Layer 7 HTTP & HTTPS Reverse-Proxy
  • URL-, HTML- & Content-Rewriting
  • High-Availability-Cluster support
  • Header-Rewriting with LDAP support
  • IPv6 Gateway, publishing IPv4 applications via Ipv6

Application-layer security: Web Application Firewall

  • Powerful protection against most common attacks
  • Generic attack detection:
    • Email-, SQL-, HTML-, command-, filename and header-injection
    • HTTP anomalies, e.g. Response Splitting
  • Fine-grained rules for less false-positives
  • Information Leakage prevention, outbound Data Theft protection (more...)
  • PCI DSS compliance
  • Cookie-encryption and -signing to prevent:
    • Cross-Site Request Forgery/Session Riding
    • Session Hijacking/Fixation, Cookie Tampering
  • Antivirus scanning
  • Fine-grained exception-rules for less False-Positives
  • XML Firewall: protects your XML based Web applications against XML based attacks
  • More...

Authentication and Authorization control framework

  • eMARA as Single Sign-On portal solution
  • Central access control management
  • Time- and network-based access control
  • LDAP & Active Directory based access control
  • Cookie-authentication using external backends
  • Client-Certificate verification
  • More...

SSL Offloading and Content Acceleration

  • Reduced backend server load
  • Session-Aware load balancing with HA-failover
  • Intelligent and/or user-defined content caching
  • Advanced TCP-connection pooling & reuse
  • Compression Offloading:
    • Improved user experience
    • Lower bandwidth consumption to clients
  • More...

Powerful Network Firewall

  • Flexible deployment: inline or routed
  • High performance stateful firewall
  • Layer 4 load balancer: TCP & UDP
  • IP-Address spoof protection
  • Advanced network management:
    • IEEE 802.1Q Layer 2 VLAN
    • IEEE 802.1AX Bonds
    • IEEE 802.1D Bridges

Control & Management

  • Detailed real-time reporting
  • External monitoring via SNMP
  • Remote-Syslog support and live logs
  • Local log space on RAID 1
  • Enhanced re-usability of settings
  • Easy online-update system
  • Distinct administrator-roles
  • Centralised management of certificates
  • Shell-access (CLI) via serial console, VGA, or SSH
  • Alerts & monitoring system (Email & SNMP Traps)
  • Transaction-based commit-system