• WAFs (web application firewalls) are a type of firewall that can protect HTTP servers from being overloaded with HTTP (GET/POST) requests. Since WAFs filter incoming web traffic at the HTTP level (application layer), they can protect against SQL injection attacks, Cross-Site Scripting (XSS) attacks, and HTTP-based DDoS attacks. Unlike WAFs, network firewalls may provide some protection against DDoS assaults while generating a large number of false positives, as they do not filter messages at the HTTP level.