Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
tino_p
Staff
Staff

Created on ‎07-14-2025 09:46 PM

Article Id 400630

Technical Tip: Identify the issue of prohibiting user's IP address from HAR log file

Description

This article describes the method to identify the issue of prohibiting users' IP addresses when accessing the website, based on the HAR log file.

 

For example, when searching for the tracking number: ie, 11250306009 on https://www.kuaidi100.com/all/wxjzwl.shtml there is no visible result. Besides, the issue only happens when accessing the website from behind the FortiGate Firewall.

 

error_info.PNG
Scope FortiGate.
Solution

Collect HAR file when searching the tracking ID and compare between working and non-working cases.

  • In a working case:

 

Checking the query with postid = 11250306009, its response has a message of 'OK' 

 

Screenshot_working.png

 

  • In a non-working case:

Checking the query with postid = 11250306009, its response has a message of 'Illegal access: IP prohibited access' => It indicates that the website has either a block policy for the user's IP address or country location.

 

Screenshot_non-working.png

  • As a workaround, it is possible to use a different IP pool (with a different WAN IP address) or to use a different IP location to get the results.
Labels:
151
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.