Skip to main content
rezafathi
rezafathi
Explorer III
December 26, 2023
Solved

Fortigate waf

  • December 26, 2023
  • 1 reply
  • 1598 views

Hi

 

We have a vip server facing outside of our company. I created a policy and enabled waf with all high severity enabled. When a user from outside submits a form, FGT waf recognizes it as sql injection extended and won't let the user submit the form and webpage crashes after. What should i do?

Best answer by hbac

Hi @rezafathi,

 

There is no option to exempt IP address for WAF profile. You can create a new WAF profile and disable that signature. 

 

Regards, 

1 reply

abarushka
Staff
abarushka
Staff
December 27, 2023

Hello,

 

You can find the forms below in order to contact specific teams regarding UTM databases:

 

https://www.fortiguard.com/contactus

 

However I cannot find WAF related team. Therefore, you may consider to use generic form in order to check whether it is false positive:

 

https://www.fortiguard.com/faq/general-contact

    rezafathi
    rezafathiAuthor
    Explorer III
    January 3, 2024

    No i want to exclude a web server from extended sql injection. How can i do that?

    hbac
    Staff
    hbacAnswer
    Staff
    January 3, 2024

    Hi @rezafathi,

     

    There is no option to exempt IP address for WAF profile. You can create a new WAF profile and disable that signature. 

     

    Regards, 

      Terms & ConditionsAccessibility statement