Current Limitation ObservedIn FortiWeb 7.4.11 deployment operating in
reverse proxy mode, TLS protocol and cipher suite configuration appears
to be global across all protected applications.Operational ChallengeOur
goal is to enforce strong TLS protoc...
I am using the FortiWeb 7.6.0 Web Application Firewall and have a
question regarding the threshold-based profiles under the bot mitigation
policy. Specifically, this pertains to features like: • Vulnerability
Scanning Detection• Crawler Detection• Sl...
Hi @jerrysa , You can try by creating an outbound firewall policy (users
to internet) and attach a Web Filter profile. Within the Web Filter
profile, you can use Static URL Filtering (exact domain or wildcard,
such as mytime.kroger.com or *.kroger.co...
Hi @opetr_FTNT/@Stephen_G, Thank you for your response. Let’s consider a
scenario where the IP is shared. In such cases, there could be multiple
users under the same IP, requiring us to increase the thresholds. This
would, in turn, allow a single IP ...
Hi @hcor87 , You know the users accessing the directory URL are valid,
and the rest are invalid. Since the bots are causing the main issue and
don’t access the directory URL, you can try the following approach:
Blacklist Bot IPs:Identify the IPs that...
Hello @elsy, To determine how many applications can be protected by the
FortiWeb 3000F, the process involves understanding both the FortiWeb’s
throughput capacity and the throughput requirements of each application.
Here’s how you can approach it: 1....
