• Support Home
  • Knowledgebase
  • FAQs
  • Getting Started
  • Support Home
  • Knowledgebase
  • FAQs
  • Getting Started
home/Knowledge Base/Using ASTRA Firewall/What does “Security Level” in the Astra Firewall mean?
Popular Search:Whitelisting a URL, Google Bot , Migrate Astra

What does “Security Level” in the Astra Firewall mean?

April 19, 2019 February 17, 2020

The security level of the Astra firewall defines what actions Astra takes on malicious IP addresses & users. There’s an internal algorithm that determines the ‘attack intensity’ and takes appropriate actions based on many factors such as attack consequence level, attack frequency, attacker reputation, etc.

  1. Login to your dashboard and navigate to settings. Scroll down and you’ll find the “Security Level” tab there.
  2. You’ll find a drop-down menu with options – High, Medium and Low next to it.
  3. A “High” security level would mean if there is even one attack performed from a single IP, the attacker’s IP gets blocked directly.
  4. Similarly, in the “Medium” mode if there are 5-10 attacks that are performed from a single IP, the attacker’s IP gets blocked for 100-300 minutes.
  5. Whereas in the “Low” mode, if there are 2-5 attacks from the IP, their IP gets blocked for 10-15 minutes.

Hence, the Security level decides the blocking duration. Each WAF rule also has an impact score attached to it. The Security levels have a threshold impact score on the basis of which it identifies and blocks threats.

For example, a basic SQL injection probing such as xyz.com?s=1’ has an impact score of 15, then in ‘low’ mode, the request may not be blocked, whereas in the ‘High’ mode an impact score of 15 is huge and the attacker’s IP gets blocked.

In case of any further queries, you can reach out to us through the support tab in your dashboard. We’ll be happy to help! 🙂

Tags:Astra Firewallattack frequencyattack intensityblocking durationconsequence levelimpact scoreIP blockingModes of security levelsecuritysecurity levelThreatsWAF rule

Was this helpful?

2 Yes  No
Related Articles
  • How to manage your website with options in Astra settings?
  • What is Login Protection on Astra Dashboard?
  • API calls timeout error
  • How to Resolve Error Messages on Astra’s Threats Page?
  • How to raise a support ticket from your Astra dashboard?
  • Get Combined Overview Of All Your Websites
Using ASTRA Firewall
  • What does “Security Level” in the Astra Firewall mean?
  • How to manage your website with options in Astra settings?
  • What is Login Protection on Astra Dashboard?
  • API calls timeout error
  • How to Resolve Error Messages on Astra’s Threats Page?
  • How to raise a support ticket from your Astra dashboard?
View All 23  
Popular Articles
  • How to install SQLite for PHP on my Apache/nginx server?
  • Fixing Missing HTTP Security Headers
  • How to enable SQLite in your cPanel/hosting account
  • Whitelisting an IP on your website using Astra
  • How to rename admin folder name in OpenCart 1.5 & vQmod?
KB Categories
  • Agency
  • Billing & Payments
  • Community Security
  • Getting Started
  • Malware Scanner
  • Securing OpenCart
  • Security Audit – FAQ
  • Security Best Practices
  • Support
  • ThemeCloud
  • Threats Stopped – FAQ
  • Troubleshoot
  • Using ASTRA Firewall
  • WP Hardening

Astra Website Security

Product
  • Astra Security
  • Pricing
  • Plan Comparison
  • Malware Removal
  • Resources
Solutions
  • Website Malware Cleanup
  • WordPress Security
  • Magento Security
  • OpenCart Security
  • Joomla Security
Join Our Community
  • KnowledgeBase
  • FAQ
  • Getting Started
  • How To Use Astra
  • Support Ticket
  • Privacy Policy
  • Terms of Use
  • © 2020 Astra IT Inc. All Rights Reserved.

Popular Search:Whitelisting a URL, Google Bot , Migrate Astra