HTTP and HTTPS traffic is designed to traverse network firewalls. This traffic can contain command exploits that target vulnerabilities in web applications. The Barracuda Web Application Firewall screens input to web applications to block attacks that pass through network firewalls.