Help
FortiAppSec Cloud
FortiAppSec Cloud delivers unified application security and performance with WAF, bot protection, GSLB, DDoS mitigation, threat analytics, and CDN.
Pwalia
Staff
Staff

Created on ‎10-13-2023 02:53 PM Edited on ‎12-11-2024 01:38 AM By Moderator

Article Id 278958

Outbreak Alert: HTTP/2 Rapid Reset Attack and Mitigation

Description This article describes how to Enable HTTP/2 Max Requests in HTTP Protocol Constraints for protection against HTTP/2 Rapid Reset Attack.
Scope FortiWeb, FortiAppSec Cloud.
Solution
  1. In FortiWeb -> Web Protection -> Protocol -> HTTP, select Create New or Edit an existing entry. (The example in this article is made with Create New).

Pwalia_0-1697233666469.png

 

  1. In the new window, input a name. Enable HTTP/2 Max Requests and set an action as needed (the default action is Alert), then select OK.

Pwalia_1-1697233666500.png

 

  1. Check the new HTTP Protocol Constraints were created successfully. The name used here is http2_test.
                                              
Pwalia_2-1697233666519.png

 

  1. Under FortiWeb -> Policy -> Web Protection Profile, edit the corresponding profile.
                                     
Pwalia_3-1697233666535.png

 

  1. Select the newly added profile (http2_test in this example) in HTTP Protocol Constraints and select OK.

 

To apply it on FortiAppSec Cloud:

  • Navigate to the desired Application.
  • Navigate to Application Name -> Access Rules -> Request Limits, then set 'HTTP/2 Max Requests' to 'ON' and 'Number of HTTP/2 Max Requests' to '1000'.
2625
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.