WAF ; is a common name for Web application Firewall , Lots think if you have a firewall or Intrusion prevention you are secure . well you are totally wrong web application firewall is more advance and it can detect and eliminate the following for example :

*SQL injection
*hide / prevent developers comments and notes
*learn Web behaviors so suspected ones will be automatically blocked

Good example of best in the market are :