When an unwanted defacement event happens to your website, do you have an easy solution to restore it back to normal? Are you restoring the same security vulnerabilities back? WebOrion® Restorer allows you to swiftly restore your web presence using a Secure Replica while you work backend to investigate – all done in a straightforward and effortless way.
No software agent is required to be installed on the webserver.
Simpler restoration allows faster reaction to a defacement and protection of the organisation’s web reputation.
This feature allows the creation of Secure Replicas based on both ad-hoc and scheduled basis. Customer can also preview and choose the most appropriate replica for each website.
WebOrion® Restorer is an on-site appliance deployed in your organisation’s network. It is best deployed in conjunction with a Load Balancer or in-line to your webserver. Once it is installed, it will work as follows:
In our Saas edition, the subscriber first needs to login to the Self Service Portal to replicate the domain to be restored. It includes going through a crawl and copy process over the internet before creating a secure replica of the original website. You can create customized secure replica settings to modify the replica to strip off vulnerabilities that might exist on your websites.
You can manage different replicas and select the replica that you wish to restore to during a failover. In an event of a defacement, failover can be done by switching web traffic to our WebOrion® Restorer.
Our WebOrion® Restorer is available in multiple deployment options to meet Enterprise customer needs. This includes Enterprise SaaS, On-Premise physical and virtual appliances. Please feel free to contact us at firstname.lastname@example.org for pricing information.
For Anti-DDOS service (for e.g. Incapsula, Cloudflare, etc.), they usually work by having the customer’s DNS send traffic to their servers. The Anti-DDOS services’s servers will then forward the traffic to the original web server (usually known as the Origin). For the restorer to work, we need to be able to switch customer’s traffic to the restorer device upon customer’s request.
One way to do this is to change the origin server configuration on the Anti-DDoS name controlled by WebOrion® (e.g.x.restorer.banffcyber.net). Under normal situations, this DNS name with point to the origin server IP (22.214.171.124).
When there is a need to switch to restorer, the user can initiate the process from our Monitor portal. The WebOrion® DNS name with change to the restorer IP (126.96.36.199). Sine the WebOrion® DSN has a very shot TTL (less than 60s), when the Anti-DDoS provider tries to resolve the origin DNS the next time (when the TTL expires), it will use the replica on the restorer.