FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ddabhade
Staff
Staff
Description This article describe how to get referrer URI in web filter logs.
Scope FortiGate.
Solution

In HTTP, Referrer is the name of an optional HTTP header field that identifies the address of the web page (URI), from which the resource has been requested.

By checking the referrer, the server providing the new web page can see where the request originated.

 

Go in FortiGate web filter and policy config requirement to get referrer URI in web filter logs.

 

Web filter profile.

 

# config webfilter profile
    edit <Web_filter_Name>
        set feature-set proxy
        set web-filter-referer-log enable
        set web-url-log enable
        set log-all-url enable
    end


# config firewall policy
    edit <policy_id>
        set inspection-mode proxy
        set ssl-ssh-profile "deep-inspection"
        set webfilter-profile "<Web_filter_Name>"
        set logtraffic all
   next
end

 

ddabhade_0-1656572199689.png

 

Contributors