Staff

Technical Tip: How many Source IP's/URL can be added in one custom rule filter

Forum|Forum|1 year ago
October 9, 2024
0 replies
533 views

Description

This article shares information about custom rule filter length limitation when using the filter.

Scope

FortiAppSec Cloud.

Solution

For example, an application requires 'Source IP' as a filter. In this filter, one can also define IP address or Subnet range.

The filter value has a length limitation (<=255 characters), so the amount depends on the length of each IP/IP range.

All IPs are like 1.1.1.1, 1 holding 1 character, then at most 31 IP addresses can be added and if all IPs are like 123.123.123.123, 1 holding 3 characters, then at most 16 IP addresses can be added in one custom rule filter.

'1' is 1 character, '123' is 3 characters, '.' is a character, Separator symbol ',' is also counted as a character.

Each filter calculated its own 255, so in one custom rule, one can have source IP <=255 characters and the URL <=255 characters.

To configure Custom rule from GUI:

Custom rule2025.png.jpg

Custom rule2026.png.jpg

Note:

One application can be configured with a maximum of 12 custom rules.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded