Hi, many time, WAF (ver 5.60) block the POST to a particular page with
many different signatures. This because on the raw body of the POST the
customers send a xml within all type of char, code, url and other crap.
This xml for the application isn't ...
The only way that I found is, from Web Application > Know Attacks >
Signatures, exclude signature by signature the Elements:HOST =
www.mysite.org as a string URI = /push/Service.asmx/SendXML as a string
Parameter = BMS_XML as a stringbut it's very lo...
The FortiWeb session cookie is named cookiesession1 To prevent tampering
need use Security Mode = Singed "When FortiWeb receives the first HTTP
or HTTPS request from a client, it uses a cookie to track the session.
When you select this option, the se...
I guess in Application Delivery, create Rewriting_Rule with Request
Action 301 and two subrule.First subrule use Object "HTTP Host" and take
the FQDN request (for example (.*)) and memorize value in $0(Try if
works with :8085...I don't know)Second su...
I had the same problem and it took me two hours to solve it!! PROBLEM:
the problem is how the 5.2.1 import the user.SOLUTION: after the users
creation, rename the user (User & Device -> Users definition) exactly as
on "cn" field of Active DirectoryEX...
