Technical Tip: How to disable Web Anti-defacement ...

shafiq23 · 12-17-2024

Description This article describes how to use pattern matching to replace HTTP Host(to real server) in virtual server scripting and steps to debug virtual server scripting issues. Scope FortiADC. Solution Requirement:Translate HTTP Host header value ...

shafiq23 · 12-17-2024

Description This article discusses default route behavior in the FortiWeb Public Cloud platform and how to modify it according to environment requirements. Scope FortiWeb-VM Public Cloud platform. Solution FortiWeb-VM in the Public Cloud platform by ...

shafiq23 · 11-19-2024

Description This article describes configuring Client IP exception when false positive SQL/XSS Syntax Based Detection injection triggered. Scope FortiWeb. Solution Certain application functionalities or data inputs from client could inadvertently tri...

shafiq23 · 11-08-2024

Description This article describes how to solve CVE-2024-6387 on affected versions and steps to disable SSH administrative access via the interface as a workaround. Scope FortiWeb, FortiWeb-VM. Solution PSIRT advisories (FG-IR-24-258) mentioned Forti...

shafiq23 · 10-28-2024

Description This article describes how to use Postman/curl to export FortiADC system debug files through REST API. Scope FortiADC, FortiADC VM. Solution Create a REST API administrator or regenerate the API key if there is an existing REST API admini...

shafiq23 · 11-28-2024

Hello @defsdefs12, FortiADC 7.6.0 now supports HA cluster up to 8 member nodes. Please refer New Features documentation. https://docs.fortinet.com/document/fortiadc/7.6.0/new-features/092029/high-availability Thanks. Regards, Shafiq

shafiq23 · 11-26-2024

Hey @defsdefs12, I'd suggest to start with understanding the HA deployment modes and redundancy objectives to be met. You can refer below documentation as it provides sample configuration, topology, how traffic flows in HA and troubleshooting steps.h...

shafiq23 · 11-07-2024

Hello @sndyblz, if user source IP is real client IP, you can use Client IP exception. 1. Identify which XSS category was triggered. e.g HTML Tag Based XSS Injection 2. Set Client IP exception. Thanks!

shafiq23 · 10-28-2024

Hello @jwiest, In Active-Passive HA, the secondary doesn't initiate health check probes to real servers and respond to virtual server service which is why real server status in Logical Topology is shown down in secondary. There were some changes in t...

shafiq23 · 08-14-2024

Hello @sheerazali, There are some cases where Android device requires complete certificate chain provided by the server(which is FortiWeb). I can see you mentioned a wildcard certificate imported into FortiWeb server policy. Can you also import its i...

User Statistics

User Activity

Technical Tip: Use pattern matching to replace HTTP Host using LUA script

Technical Tip: Change default route priority selection for FortiWeb Public Cloud

Technical Tip: SQL/XSS Syntax Based Detection injection exception

Technical Tip: OpenSSH regreSSHion Attack (CVE-2024-6387) affecting FortiWeb sshd process

Technical Tip: Export system debug file via REST API

Re: FortiADC Clustered Setup

Re: FortiADC Clustered Setup

Re: FortiWeb detecting Wordpress as XSS

Re: FortiADC rspools on HA02 down after upgrade

Re: SSL Certificate Issue on Andriod Application

Technical Tip: How to disable Web Anti-defacement ...

Troubleshooting Tip: FortiWeb coredump HA Failover

Technical Tip: Identify private IP classes in X-Fo...

Re: FortiADC Clustered Setup

Re: FortiADC Clustered Setup

Re: FortiWeb detecting Wordpress as XSS

Re: SSL Certificate Issue on Andriod Application

Re: Customize the port number in FortiWeb Cloud

KCS