This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SOAP or XML IPS

Hi, I am looking to insert some IPS rule to detect any irregularities in our XML traffic within SOAP calls over http. I have been looking for examples, but have found none. I know the XWALL firewall can detect this during inspection. Please advice how to set up such detection with Astaro. Thanks.

This thread was automatically locked due to age.

0 SecApp over 20 years ago

The short answer: with a lot of work which Astaro won't sanction.

You would need to run the XML through a validating parser; for low overhead, SAX (so maybe it's not validating nesting, but it's checking for malformed tags...).

There appears to be no OpenSource SOAP proxy yet (at least not one I could find...), so my suggestion would be to do C modules on Apache on a test box in your DMZ.
Cancel
Vote Up 0 Vote Down

Cancel