Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ersansimsek
New Contributor

Created on ‎09-25-2023 11:47 PM

URL Filter for incoming connections?

We have one tomcat server in our environment.
Can we write a rule like this for incoming connections?
1. www.abc.com/* (allow all incoming connections. It is currently active and working)
2. www.abc.com/xyz/* (only private ip addresses can access xyz and its subfolders, deny other incoming connections. Everyone can access folders other than xyz).

Labels:
1002
0 Kudos
1 REPLY 1
xshkurti
Staff
Staff

Created on ‎09-26-2023 01:37 AM

@ersansimsek 
You can try as below:
Create 1 security profile for Web Filter as per this link: 

URL filter | FortiGate / FortiOS 7.4.1 | Fortinet Document Library

On this profile you block www.abc.com/xyz/*
Now you will need 2 firewall policies.

First one will have as source private IP addresses, and destination this web-server you can apply Web Filter that is already working.

On second firewall policy set as source all, destination web-server and apply Web Filter profile that blocks xyz.
Hope this helps.

981
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.