Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
rezafathi
Contributor II

Exempt a local web server (VIP) from FGT WAF signature

Hi

 

I want to exempt one of my local web server facing internet from SQL Injection (Extended) signature , because it causes so many errors when users want to submit forms. How can I do that?

Reza F.
Reza F.
1 Solution
AEK
Honored Contributor II

Hi Reza

You need to create a separate WAF profile, in which you disable Extended SQL injection signatures, then create a new firewall policy dedicated for that back-end server and use the new WAF profile in that policy.

AEK

View solution in original post

AEK
1 REPLY 1
AEK
Honored Contributor II

Hi Reza

You need to create a separate WAF profile, in which you disable Extended SQL injection signatures, then create a new firewall policy dedicated for that back-end server and use the new WAF profile in that policy.

AEK
AEK
Labels
Top Kudoed Authors