Description | This article describes how to Block/Allow URLs that contain a specific string with Web Application Firewall. |
Scope | FortiGate, Web Application Firewall. |
Solution |
set pattern "<any_string>"
This article describes how to use WAF to allow or block any URL that contains the desired string. Open the CLI and then create a WAF profile. Each profile should have its name and then set a name for each use case.
Copy the following CLI commands into the CLI window of the FortiGate.
It is also possible to copy the following CLI commands and replace <profile_exception> with the desired name for the signature-exception profile. Then replace <test_string> with the string desired to trigger the signature exception (regex is allowed). Then set the action to <block/allow> url when test_string is present.
config waf profile
To check if the settings have been set, run the following:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.