| Description | This article describes how to debug the URL Rewriting module using CLI debug commands in v7.4.x or later. |
| Scope | FortiWeb v7.4 or later. |
| Solution |
Prerequisite: Server Policy Web Protection Profile has the URL Rewriting module enabled.
The FortiWeb URL Rewriting module mostly relies on the HTTP Host and URL regular expression conditions matching. The FortiWeb GUI traffic log may not be able to identify if the URL rewriting rule and policy match. Since v7.4.x or later, the CLI debugging has improved and helps better with the URL Rewriting module troubleshooting.
To enable debugging for the URL Rewriting module, run the debug commands below:
diagnose debug timestamp enable diagnose debug flow filter server-ip x.x.x.x <----- Replace with test server VIP IP.
Send the URL test request.
diagnose debug flow trace stop
URL Rewriting rule that performs redirection of the URI in the root directory to a subdirectory (/public).
Debugging output:
Sample 2: URL Rewriting rule that performs redirection of the HTTP URL to the HTTPS URL.
Debugging output:
Related documents: Appendix E: Regular expressions |
