Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
AEK
SuperUser
SuperUser

Created on ‎02-01-2025 02:04 PM

How to prevent auto clicker with FortiWeb

Hi FWB admins

Any idea on how can protect web server from auto clicker with FortiWeb?

AEK
AEK
Labels:
237
0 Kudos
6 REPLIES 6
Anthony_E
Community Manager
Community Manager

Created on ‎02-04-2025 12:37 AM

Hello Abdelkrim,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
191
0 Kudos
AEK
SuperUser
SuperUser
In response to Anthony_E

Created on ‎02-04-2025 02:41 AM

Thanks Anthony.

AEK
AEK
167
0 Kudos
Anthony_E
Community Manager
Community Manager

Created on ‎02-06-2025 05:09 AM

Hello Abdelkrim,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Regards,

Anthony-Fortinet Community Team.
144
AEK
SuperUser
SuperUser
In response to Anthony_E

Created on ‎02-06-2025 07:39 AM

I think a workaround can be done with reCAPTCHA. But I wonder if there is a better solution for this case.

AEK
AEK
128
Anthony_E
Community Manager
Community Manager

Created on ‎02-10-2025 05:35 AM

Hi Abdelkrim,

 

I hope you are doing well :)!

 

I may found an answer for you:

 

To prevent auto clicker attacks using FortiWeb, you can utilize the WAF (Web Application Firewall) features to set up rules that detect and block suspicious behavior. Here are the steps to help prevent auto-clicker attacks:

  1. Configure Rate Limiting: Set up rate limiting rules in FortiWeb to limit the number of requests from a client within a specific time frame. This can help prevent automated tools like auto clickers from generating excessive requests.
  2. Utilize Bot Recognition: Enable bot recognition features in FortiWeb to distinguish between human users and automated tools. You can set actions to be taken when automated behavior is detected, such as returning a JavaScript challenge to verify if it's a real browser.
  3. Implement CAPTCHA Enforcement: If necessary, enable CAPTCHA enforcement in FortiWeb to add an additional layer of security. This can help differentiate between human users and bots by requiring users to complete a CAPTCHA challenge.
  4. Monitor and Analyze Traffic: Regularly monitor and analyze traffic patterns using FortiWeb's reporting and analytics tools. Look for unusual spikes in traffic or repetitive patterns that may indicate auto-clicker activity.
Anthony-Fortinet Community Team.
92
0 Kudos
AEK
SuperUser
SuperUser
In response to Anthony_E

Created on ‎02-10-2025 10:05 AM

Hi Anthony

Hope you are doing fine too.

Thanks for your suggestion. The first and third seem worth a try.

AEK
AEK
76
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.