{"id":21225,"date":"2018-08-07T12:29:00","date_gmt":"2018-08-07T10:29:00","guid":{"rendered":"https:\/\/hetzner.co.za\/help-centre\/?p=21225"},"modified":"2025-12-30T13:04:22","modified_gmt":"2025-12-30T11:04:22","slug":"cloudbric-faq","status":"publish","type":"post","link":"https:\/\/xneelo.co.za\/help-centre\/website\/cloudbric-faq\/","title":{"rendered":"Cloudbric WAF FAQ"},"content":{"rendered":"<p><em>[Frequently asked questions about the <a href=\"https:\/\/xneelo.co.za\/help-centre\/control-panel\/about-cloudbric-security\/\" target=\"_blank\" rel=\"noopener noreferrer\">Cloudbric WAF website security service<\/a>]<\/em><\/p>\n<p><strong><a href=\"https:\/\/xneelo.co.za\/cloudbric\/\" target=\"_blank\" rel=\"noopener\">Cloudbric WAF<\/a> is a security service that provides comprehensive protection against website attacks and vulnerabilities.<\/strong> We offer this add-on service to our customers to assist you in protecting your website.<\/p>\n<h3>What is the difference between the security that you already provide and this service?<\/h3>\n<p><b><span style=\"font-weight: 400;\">We ensure that our servers and network are free from security threats. <strong>Cloudbric WAF<\/strong> offers website level security, which is a specialised service.<\/span><br \/>\n<\/b><b><\/b><\/p>\n<h3>What is a Web Application Firewall (WAF)?<\/h3>\n<p><span style=\"font-weight: 400;\">A web application firewall (or WAF) filters, monitors, and blocks website traffic to and from a website. A WAF is differentiated from a regular firewall in that a WAF is able to filter the content of specific websites, eg. WordPress, Joomla. By inspecting website traffic, it can prevent attacks stemming from website security flaws, such as SQL injection, cross-site scripting (XSS), file inclusion, and security misconfigurations.<\/span><b><\/b><\/p>\n<h3>My website has been hacked? Will Cloudbric WAF fix it?<\/h3>\n<p><b><span style=\"font-weight: 400;\">While a web application firewall is a proactive security solution that can prevent you from getting into trouble, you should check if your website is already infected. If you weren&#8217;t previously using a solution similar to Cloudbric WAF, your website potentially could have already been compromised. Cloudbric WAF focuses on protection and prevention and not the cleaning of already compromised websites. You can have it cleaned by a reputable website developer or website cleaning service.<\/span><\/b><\/p>\n<h3>Cloudbric WAF offers a free option for domains using less than 4GB per month on their website. Why should I use you?<\/h3>\n<p><span style=\"font-weight: 400;\">Cloudbric WAF does not have any public African nodes that can be used directly (i.e. not via xneelo), therefore website speed will be significantly impacted as your site will be served via Asia. The dashboard will also be slower. Customers making use of Cloudbric WAF with xneelo will not experience this delay as everything will be hosted locally and will be much faster. You will also not be limited to 4GB of traffic per month.<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><\/p>\n<h3>Must Cloudbric WAF customers update their own DNS or will it be done automatically on activation?<\/h3>\n<p><span style=\"font-weight: 400;\">We will update the DNS of domains whose website DNS is hosted by xneelo. (This is the default configuration). Domains with website DNS (@ and www records) hosted elsewhere will need to have the DNS updated at the relevant host before Cloudbric WAF activation can complete.<\/span><\/p>\n<h3>How does Cloudbric WAF compare with security plugins?<\/h3>\n<p><span style=\"font-weight: 400;\">One can not compare a cloud-based Web Application Firewall with an endpoint protection service such as a security plugin for your CMS. While there may be some overlap in the protection offered, it is a good idea from a security perspective to have both installed. Security plugins often offer malware detection and removal, which is not what cloud-based WAFs are intended for. <\/span><b><br \/>\n<\/b><\/p>\n<h3>You already offer DDoS protection, so why do I need Cloudbric WAF\u2019s DDoS protection?<\/h3>\n<p><b><span style=\"font-weight: 400;\">Our DDoS protection protects the <strong>network layer<\/strong> against direct large scale DDos attacks (layer 3 &amp; 4). Cloudbric WAF protects against the <strong>website application level<\/strong> DDoS attacks (layer 7).<\/span><\/b><\/p>\n<h3>You already offer free SSL\/TLS, so why do I need Cloudbric WAF\u2019s SSL\/TLS?<\/h3>\n<p><span style=\"font-weight: 400;\">With Cloudbric WAF enabled, the SSL\/TLS offered by us will cover the connection between the xneelo hosting server and the Cloudbric WAF server. Cloudbric WAF\u2019s SSL\/TLS will cover the connection between the Cloudbric WAF server and the browser of the website visitor.<\/span><b><br \/>\n<\/b><\/p>\n<h3>Will Cloudbric WAF work with a custom SSL\/TLS certificate, such as GoDaddy and Thawte?<\/h3>\n<p><span style=\"font-weight: 400;\">If you would like to use your own SSL\/TLS certificate instead of the free Let\u2019s Encrypt SSL\/TLS certificate, please provide us with both the certificate and key files via email to <a href=\"mailto:support@xneelo.com\" target=\"_blank\" rel=\"noopener noreferrer\">support@xneelo.com<\/a>.<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">If you have a custom Thawte SSL\/TLS certificate that was provided by us, we will install this certificate on your behalf.<\/span><b><br \/>\n<\/b><\/p>\n<h3>Why doesn&#8217;t my email work after activating Cloudbric WAF?<\/h3>\n<p>If your email is setup using the recommended default xneelo settings, your email will not be affected. However, if you have used alternative settings, you may experience an error. Ensure that you use these mail server settings in your mail programme:<\/p>\n<ul>\n<li>Incoming mail server (POP or SMTP): <strong>mail.<\/strong>domain e.g. <em>mail.example.co.za<\/em><\/li>\n<li>Outgoing SMTP server: <strong>smtp.<\/strong>domain e.g. <em>smtp.example.co.za<\/em><\/li>\n<li>Alternatively, your <a href=\"https:\/\/xneelo.co.za\/help-centre\/domains\/ip-address\/\" target=\"_blank\" rel=\"noopener noreferrer\">server IP address<\/a> can be used<\/li>\n<\/ul>\n<h3>Why can&#8217;t I FTP to my website after activating Cloudbric WAF?<\/h3>\n<p>This will occur if you are using your <strong>domain name<\/strong> as the <strong>host name<\/strong> in your FTP or SSH client. As web traffic is now routed via the Cloudbric WAF servers rather than directly to your website, use your <a href=\"https:\/\/xneelo.co.za\/help-centre\/domains\/ip-address\/\" target=\"_blank\" rel=\"noopener noreferrer\">server IP address<\/a> as the host name in FTP or SSH.<\/p>\n<h3>Can I use Cloudbric WAF on a Parked Domain?<\/h3>\n<p><span style=\"font-weight: 400;\">If your Cloudbric WAF protected domain has parked domain(s), it is highly recommended that you secure your parked domain(s) via an .htaccess redirect. The redirect will reroute all traffic from your parked domain(s) to your main domain. This will change the web address (URL) in the browser to that of your main domain. <\/span><\/p>\n<p><span style=\"font-weight: 400;\">The following rules need to be placed within a .htaccess file in the public_html of your main domain. Replace the example domain names with your relevant domain names.<\/span><\/p>\n<p><span style=\"font-weight: 400;\"> If you are having difficulty adding these rules, please contact our Support team for further assistance.\u00a0<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><\/p>\n<pre><span style=\"font-weight: 400;\">RewriteEngine On<\/span>\r\n\r\n<span style=\"font-weight: 400;\"># Entry for each parked domain. Add more lines if more Parked domains exist:<\/span>\r\n<span style=\"font-weight: 400;\">RewriteCond %{HTTP_HOST} ^(www.)?parked-domain-one.com$ [OR]<\/span>\r\n<span style=\"font-weight: 400;\">RewriteCond %{HTTP_HOST} ^(www.)?parked-domain-two.com$ [OR]<\/span>\r\n\r\n<span style=\"font-weight: 400;\"># Entry for temporary URL:<\/span>\r\n<span style=\"font-weight: 400;\">RewriteCond %{HTTP_HOST} ^(.*).host-h.net$<\/span>\r\n\r\n<span style=\"font-weight: 400;\"># Redirect Destination:<\/span>\r\n\u00a0RewriteRule ^\/?$ \"https:\/\/www.example.com\" [R=301,L]<\/pre>\n<h3>Can I use Cloudbric WAF on multiple domains?<\/h3>\n<p><span style=\"font-weight: 400;\">Please note that Cloudbric WAF is not currently supported on multiple domains.<\/span><\/p>\n<pre><\/pre>\n<header class=\"article-header\">\n<h3>Does Cloudbric WAF affect Google Analytics\/AdSense?<\/h3>\n<\/header>\n<div class=\"article-body markdown\">\n<p>Cloudbric WAF has no effect on Google Analytics. Cloudbric WAF is located between the web server and traffic \u2013 not between Google servers and traffic &#8211; and thus has no impact on Google Analytics. Also, Cloudbric WAF does not block search engine bots or crawlers, since they are considered safe and are included in the system\u2019s \u2018Whitelist IP\u2019 list. Cloudbric WAF has no effect on JavaScript, and thus will have no impact on AdSense as well. You do not need to add banner or ad code in order to use Cloudbric WAF.<\/p>\n<\/div>\n","protected":false,"plain":"<em>[Frequently asked questions about the <a href=\"https:\/\/xneelo.co.za\/help-centre\/control-panel\/about-cloudbric-security\/\" target=\"_blank\" rel=\"noopener noreferrer\">Cloudbric WAF website security service<\/a>]<\/em>\r\n\r\n<strong><a href=\"https:\/\/xneelo.co.za\/cloudbric\/\" target=\"_blank\" rel=\"noopener\">Cloudbric WAF<\/a> is a security service that provides comprehensive protection against website attacks and vulnerabilities.<\/strong> We offer this add-on service to our customers to assist you in protecting your website.\r\n<h3>What is the difference between the security that you already provide and this service?<\/h3>\r\n<b><span >We ensure that our servers and network are free from security threats. <strong>Cloudbric WAF<\/strong> offers website level security, which is a specialised service.<\/span>\r\n<\/b><b><\/b>\r\n<h3>What is a Web Application Firewall (WAF)?<\/h3>\r\n<span >A web application firewall (or WAF) filters, monitors, and blocks website traffic to and from a website. A WAF is differentiated from a regular firewall in that a WAF is able to filter the content of specific websites, eg. WordPress, Joomla. By inspecting website traffic, it can prevent attacks stemming from website security flaws, such as SQL injection, cross-site scripting (XSS), file inclusion, and security misconfigurations.<\/span><b><\/b>\r\n<h3>My website has been hacked? Will Cloudbric WAF fix it?<\/h3>\r\n<b><span >While a web application firewall is a proactive security solution that can prevent you from getting into trouble, you should check if your website is already infected. If you weren't previously using a solution similar to Cloudbric WAF, your website potentially could have already been compromised. Cloudbric WAF focuses on protection and prevention and not the cleaning of already compromised websites. You can have it cleaned by a reputable website developer or website cleaning service.<\/span><\/b>\r\n<h3>Cloudbric WAF offers a free option for domains using less than 4GB per month on their website. Why should I use you?<\/h3>\r\n<span >Cloudbric WAF does not have any public African nodes that can be used directly (i.e. not via xneelo), therefore website speed will be significantly impacted as your site will be served via Asia. The dashboard will also be slower. Customers making use of Cloudbric WAF with xneelo will not experience this delay as everything will be hosted locally and will be much faster. You will also not be limited to 4GB of traffic per month.<\/span><span >\r\n<\/span>\r\n<h3>Must Cloudbric WAF customers update their own DNS or will it be done automatically on activation?<\/h3>\r\n<span >We will update the DNS of domains whose website DNS is hosted by xneelo. (This is the default configuration). Domains with website DNS (@ and www records) hosted elsewhere will need to have the DNS updated at the relevant host before Cloudbric WAF activation can complete.<\/span>\r\n<h3>How does Cloudbric WAF compare with security plugins?<\/h3>\r\n<span >One can not compare a cloud-based Web Application Firewall with an endpoint protection service such as a security plugin for your CMS. While there may be some overlap in the protection offered, it is a good idea from a security perspective to have both installed. Security plugins often offer malware detection and removal, which is not what cloud-based WAFs are intended for. <\/span><b>\r\n<\/b>\r\n<h3>You already offer DDoS protection, so why do I need Cloudbric WAF\u2019s DDoS protection?<\/h3>\r\n<b><span >Our DDoS protection protects the <strong>network layer<\/strong> against direct large scale DDos attacks (layer 3 &amp; 4). Cloudbric WAF protects against the <strong>website application level<\/strong> DDoS attacks (layer 7).<\/span><\/b>\r\n<h3>You already offer free SSL\/TLS, so why do I need Cloudbric WAF\u2019s SSL\/TLS?<\/h3>\r\n<span >With Cloudbric WAF enabled, the SSL\/TLS offered by us will cover the connection between the xneelo hosting server and the Cloudbric WAF server. Cloudbric WAF\u2019s SSL\/TLS will cover the connection between the Cloudbric WAF server and the browser of the website visitor.<\/span><b>\r\n<\/b>\r\n<h3>Will Cloudbric WAF work with a custom SSL\/TLS certificate, such as GoDaddy and Thawte?<\/h3>\r\n<span >If you would like to use your own SSL\/TLS certificate instead of the free Let\u2019s Encrypt SSL\/TLS certificate, please provide us with both the certificate and key files via email to <a href=\"mailto:support@xneelo.com\" target=\"_blank\" rel=\"noopener noreferrer\">support@xneelo.com<\/a>.<\/span><span >\r\n<\/span><span >If you have a custom Thawte SSL\/TLS certificate that was provided by us, we will install this certificate on your behalf.<\/span><b>\r\n<\/b>\r\n<h3>Why doesn't my email work after activating Cloudbric WAF?<\/h3>\r\nIf your email is setup using the recommended default xneelo settings, your email will not be affected. However, if you have used alternative settings, you may experience an error. Ensure that you use these mail server settings in your mail programme:\r\n<ul>\r\n \t<li>Incoming mail server (POP or SMTP): <strong>mail.<\/strong>domain e.g. <em>mail.example.co.za<\/em><\/li>\r\n \t<li>Outgoing SMTP server: <strong>smtp.<\/strong>domain e.g. <em>smtp.example.co.za<\/em><\/li>\r\n \t<li>Alternatively, your <a href=\"https:\/\/xneelo.co.za\/help-centre\/domains\/ip-address\/\" target=\"_blank\" rel=\"noopener noreferrer\">server IP address<\/a> can be used<\/li>\r\n<\/ul>\r\n<h3>Why can't I FTP to my website after activating Cloudbric WAF?<\/h3>\r\nThis will occur if you are using your <strong>domain name<\/strong> as the <strong>host name<\/strong> in your FTP or SSH client. As web traffic is now routed via the Cloudbric WAF servers rather than directly to your website, use your <a href=\"https:\/\/xneelo.co.za\/help-centre\/domains\/ip-address\/\" target=\"_blank\" rel=\"noopener noreferrer\">server IP address<\/a> as the host name in FTP or SSH.\r\n<h3>Can I use Cloudbric WAF on a Parked Domain?<\/h3>\r\n<span >If your Cloudbric WAF protected domain has parked domain(s), it is highly recommended that you secure your parked domain(s) via an .htaccess redirect. The redirect will reroute all traffic from your parked domain(s) to your main domain. This will change the web address (URL) in the browser to that of your main domain. <\/span>\r\n\r\n<span >The following rules need to be placed within a .htaccess file in the public_html of your main domain. Replace the example domain names with your relevant domain names.<\/span>\r\n\r\n<span > If you are having difficulty adding these rules, please contact our Support team for further assistance.\u00a0<\/span><span >\r\n<\/span>\r\n<pre><span >RewriteEngine On<\/span>\r\n\r\n<span ># Entry for each parked domain. Add more lines if more Parked domains exist:<\/span>\r\n<span >RewriteCond %{HTTP_HOST} ^(www.)?parked-domain-one.com$ [OR]<\/span>\r\n<span >RewriteCond %{HTTP_HOST} ^(www.)?parked-domain-two.com$ [OR]<\/span>\r\n\r\n<span ># Entry for temporary URL:<\/span>\r\n<span >RewriteCond %{HTTP_HOST} ^(.*).host-h.net$<\/span>\r\n\r\n<span ># Redirect Destination:<\/span>\r\n\u00a0RewriteRule ^\/?$ \"https:\/\/www.example.com\" [R=301,L]<\/pre>\r\n<h3>Can I use Cloudbric WAF on multiple domains?<\/h3>\r\n<span >Please note that Cloudbric WAF is not currently supported on multiple domains.<\/span>\r\n<pre><\/pre>\r\n<header class=\"article-header\">\r\n<h3>Does Cloudbric WAF affect Google Analytics\/AdSense?<\/h3>\r\n<\/header>\r\n<div class=\"article-body markdown\">\r\n\r\nCloudbric WAF has no effect on Google Analytics. Cloudbric WAF is located between the web server and traffic \u2013 not between Google servers and traffic - and thus has no impact on Google Analytics. Also, Cloudbric WAF does not block search engine bots or crawlers, since they are considered safe and are included in the system\u2019s \u2018Whitelist IP\u2019 list. Cloudbric WAF has no effect on JavaScript, and thus will have no impact on AdSense as well. You do not need to add banner or ad code in order to use Cloudbric WAF.\r\n\r\n<\/div>"},"excerpt":{"rendered":"<p>Frequently asked questions about the Cloudbric WAF website security service that provides comprehensive protection against website attacks and vulnerabilities.<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"lsx_disable_title":"0","_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","footnotes":""},"categories":[166],"tags":[20740,18933,18429,18435,18432],"topics":[20749],"class_list":["post-21225","post","type-post","status-publish","format-standard","hentry","category-website","tag-cloudbric-waf","tag-waf","tag-cloudbric-faq","tag-frequently-asked-questions","tag-cloudbric-questions","topics-cloudbric-waf"],"acf":[],"additional_meta":{"category_title":[{"term_id":166,"name":"Website","slug":"website","term_group":0,"term_taxonomy_id":166,"taxonomy":"category","description":"About your Website(s)","parent":0,"count":169,"filter":"raw","term_order":"120","cat_ID":166,"category_count":169,"category_description":"About your Website(s)","cat_name":"Website","category_nicename":"website","category_parent":0}],"tag_title":[{"term_id":20740,"name":"cloudbric waf","slug":"cloudbric-waf","term_group":0,"term_taxonomy_id":20740,"taxonomy":"post_tag","description":"","parent":0,"count":10,"filter":"raw","term_order":"1218"},{"term_id":18933,"name":"waf","slug":"waf","term_group":0,"term_taxonomy_id":18933,"taxonomy":"post_tag","description":"","parent":0,"count":10,"filter":"raw","term_order":"1817"},{"term_id":18429,"name":"Cloudbric FAQ","slug":"cloudbric-faq","term_group":0,"term_taxonomy_id":18429,"taxonomy":"post_tag","description":"","parent":0,"count":1,"filter":"raw","term_order":"1979"},{"term_id":18435,"name":"frequently asked questions","slug":"frequently-asked-questions","term_group":0,"term_taxonomy_id":18435,"taxonomy":"post_tag","description":"","parent":0,"count":1,"filter":"raw","term_order":"1980"},{"term_id":18432,"name":"cloudbric questions","slug":"cloudbric-questions","term_group":0,"term_taxonomy_id":18432,"taxonomy":"post_tag","description":"","parent":0,"count":1,"filter":"raw","term_order":"1981"}]},"featured_image_src":null,"author_info":{"display_name":"marketing","author_link":"https:\/\/xneelo.co.za\/help-centre\/author\/marketing\/","author_avatar":"https:\/\/secure.gravatar.com\/avatar\/a6ea315e112423b2b955cb020fbce2b0835956c6ad85ff0f13f1db298977eaaa?s=96&d=mm&r=g"},"_links":{"self":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/posts\/21225","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/comments?post=21225"}],"version-history":[{"count":0,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/posts\/21225\/revisions"}],"wp:attachment":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/media?parent=21225"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/categories?post=21225"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/tags?post=21225"},{"taxonomy":"topics","embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/topics?post=21225"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}