Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
hcor87
New Contributor

Created on ‎12-03-2024 03:51 PM

Only Allow Access to Webpage if user hits certain directory first (Fortiweb)

Hi, 

 

Our WebDevs have been having issues with getting hit with bots, and have determined that the bots never access a certain directory URL. All regular users hit this page with each page they load, I'm told. 


Is there a method, possibly with user management, to mark a user as valid and allow me to block the rest?


Thanks!

Labels:
327
0 Kudos
3 REPLIES 3
sjoshi
Staff
Staff

Created on ‎12-03-2024 11:08 PM

Hi,

 

To restrict access to a webpage based on users hitting a certain directory first on FortiWeb, you can utilize the session management feature in the web protection profile. By configuring FortiWeb to track the session initiation and previous HTTP requests, you can ensure that users access the specific directory before accessing other pages. This method helps differentiate between legitimate users who follow the expected page order and potential bots that do not access the required directory, allowing you to block unauthorized access effectively.

Salon Raj Joshi
Fortinet Certified Expert (FCX) | #NSE8-003459
290
0 Kudos
hcor87
New Contributor
In response to sjoshi

Created on ‎12-04-2024 05:39 AM

Hi, 

 

Would you be able to provide a few more details, or which submenu in Web Protection I should drill into? All the documentation for things like a "start page" doesn't seem to exist in 7.2.10. I've searched the Cookbook and haven't seen anything on how to mark a user once they hit a certain directory. 

 

Thanks!

274
0 Kudos
saifmp_123
New Contributor

Created on ‎12-09-2024 06:37 PM Edited on ‎12-09-2024 06:38 PM

Hi @hcor87 ,

 

You know the users accessing the directory URL are valid, and the rest are invalid. Since the bots are causing the main issue and don’t access the directory URL, you can try the following approach:

 

  1. Blacklist Bot IPs:

    • Identify the IPs that send requests without ever accessing the trusted directory URL.
    • Collect those IPs and add them to a blacklist to prevent any future traffic from them to the application.

  2. Bot Mitigation Policy with Rate Limiting:

    • Enable a bot mitigation policy in FortiWeb.
    • Apply rate limiting by setting thresholds for requests. When the request rate exceeds the configured threshold, FortiWeb will automatically block the bot IPs for a specified block period.

If both these approaches don’t resolve the issue, please let me know so we can explore further options.

 

Thanks..!!

213
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.