Online Support

With a web application firewall you can block malicious traffic before it reaches your site

Storm’s Web Application Firewall (WAF) is an intelligent gateway that qualifies traffic to your web application. Malicious visitors and traffic are blocked or redirected, even when masked as legitimate traffic. With a WAF you’re protected against attacks like cross-site scripting (XSS), SQL injections, remote file inclusion and execution, and more.

  • Automatic protection against common attack vectors
  • Activated as soon as your account is created
  • Easily add rules to customise your protection

You don’t need to be a security pro

Storm’s Web Application Firewall adds an additional layer of protection to your sites and servers the moment it is activated. Just point-and-click. Optionally add your own firewall rules for personalised website and server protection.

Point-and-click activation

Log into the Storm Security Centre and activate your Web Application Firewall in a few clicks. Pre-configured rule sets protect against common and less common forms of attacks, which means less work and more end-to-end application security.

Make your own rules

Custom WAF rule support comes standard with Storm’s PCI-DSS 3.2 compliant CloudFlare package. Easily whitelist legitimate traffic and reduce false positives for more accurate organisation-specific protection of your critical applications and data.

Collective Intelligence

Storm’s Web Application Firewall delivers learned intelligence from threats detected and blocked across 10,000,000 websites. New threats are automatically added to your active rule set, delivering 24/7 cutting-edge protection.

OWASP ModSecurity

OWASP ModSecurity Core Rule Set (CRS) delivers WAF attack prevention based on broad consensus critical security risks. Protection against the OWASP Top Ten list of critical threats is automatically included. OWASP project members consist of security experts from around the world who share their expertise.


A web application firewall filters HTTP conversations (traffic passing between your server and other computers). Rules are applied during the filtering process to eliminate threats and attacks, some of which may include SQL injection, cross-site scripting (XSS), cross-site request forgery (CSRF), OS command injections, malicious file execution, and more.

Traditional firewalls won’t necessarily qualify traffic that comes to your site – they typically block ports or listen for and redirect sudden spikes in bogus traffic common with attacks like DDoS. A WAF fills this gap, listening on the application layer and examining every request that comes to your site. It is a necessity, given that some attacks may masquerade as legitimate requests to your site to gain entry.

The Open Web Application Security Project (OWASP) is a global non-profit organisation focused on application security. OWASP provides freely-available articles, methodologies, documentation, tools, and technologies to create awareness of, and enhance online application security.

Don’t just take our word for it

Over 14,000 happy retailers & brands use Storm Internet

Elizabeth Shaw

From the offset, Storm took the time to understand our problems and gave us confidence they could provide solutions to our issues. We've not been disappointed. Read More

Elliot Price - Elizabeth Shaw

Mystery Shoppers

Storm made us as the customer feel like we were valued. I think they are one of the best managed hosting companies out there! I have recommended Storm to several other people who have also been very pleased. Read More

Chris Palmer - Mystery Shoppers

Chris Palmer - Mystery Shoppers

Signum International

The Storm guys rectified any issues quickly and without needing any prompting from us. Being able to contact the MD is a real bonus, it's good to know that you have the right person's ear for what is critical to us. Read More

Bob Baker - Signum International

Bob Baker - Signum International


We had several issues with previous hosting providers including their communication, support and performance. With Storm Internet any issues have been resolved immediately and the support system is really easy to use. Read More

Sim Sekhon - Legal4Landlords

Sim Sekhon - Legal4Landlords

YKK Europe

If you need a responsive company to help with your web needs, then you can do no better than to call Storm Internet. Their dedicated team will help out in the most pressing of circumstances. Read More

Anna Stefaniak - YKK Europe

Channel and Mobile Solutions

We rely on Storm, 5 years and counting. They elevate managed hosting to a whole new level and speak our language. Read More

Mike Bowen - Channel and Mobile Solutions

Cool Milk

We need a website that is up and running at all times, and Storm delivers. They go the extra mile. Read More

Michael Saracevas - Cool Milk

Synbiotix Solutions Ltd

Storm designed and proposed a dedicated Private Cloud infrastructure that not only met our needs for current business IT operations but also allowed for future growth. Read More

Theo Constantinides - Synbiotix Solutions Ltd

Storm Internet wins Best Hosted Provider at 22nd ISPA Awards Storm Internet wins Best Hosted Provider at 22nd ISPA Awards

Storm Internet wins Best Hosted Provider at 22nd ISPA Awards

Over the years Storm Internet has collected a number of awards. They reflect a core methodology by which we empower our clients by providing them with the technology and tools they need to accomplish their goals efficiently.

Read More
0800 817 4727