Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
cwb2205
New Contributor

WAF disable signature

Hi,

 

I was trying to disable certain signatures as they were getting blocked for legitimate traffic. I found a cli command to add a signature to the disabled-signature field bit it only lets me add one signature, as soon as I try add another it just replaces the previous entry and that previous signature goes back to getting blocked.

config waf profile edit {Profile Name} config signature set disabled-signature {Event ID} end end

 

The disabled signature field only seems to be able to hold 1 id at a time. is there a way I can exempt several ids at a time? I want to avoid exempting a whole sub-class

NSE 7 ATP3.0

NSE 7 ATP3.0
1 REPLY 1
cwb2205
New Contributor

simple solution in the end

 

config waf profile edit {Profile Name} config signature set disabled-signature {Event ID} {Event ID}  end end

 

separate events must be separated with a space. if you have more to add, you need to copy the current disabled signatures out and paste them in the the new signature.

NSE 7 ATP3.0

NSE 7 ATP3.0
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors