Re: limit source ip in fortiweb

shafiq23 · 03-12-2025

Description This article describes how to rebuild the FortiADC log database. Scope FortiADC, FortiADC-VM. Solution Symptom: Cannot display logs in Log&Report. Inconsistent and delayed log display. To rebuild the log database, use the CLI command belo...

shafiq23 · 02-24-2025

Description This article describes how to configure signature exception rule based on generated attack log in Attack Log page. Scope FortiAppSec Cloud WAF. Solution For false positive blockings requiring exceptions for specific URLs or other supporte...

shafiq23 · 02-24-2025

Description This article describes how IP Fragmentation Protection is applied in the configuration and log details generated in the security log. Scope FortiADC, FortiADC-VM. Solution IP fragmentation allows packet splitting for transmission but can ...

shafiq23 · 01-21-2025

Description This article describes how to troubleshoot and fix High Availability not in Sync due to synchronization issues with scripting files. Scope FortiWeb v7.6.0, v7.4.5 and earlier. Solution FortiWeb with ADOM enabled creates a data sub folder ...

shafiq23 · 01-13-2025

Description This article describes how to use curl/Postman to monitor the FortiView Blocked IPs page on Source IP due to Block Period action using REST API. Scope FortiWeb 6.3 and later. Solution The blocked IPs page lets the administrator monitor an...

shafiq23 · 02-25-2025

Hello @Mostafa85 , Would this meet your requirement? You may fine tune the occurrences accordingly. Thanks. Regards, Shafiq

shafiq23 · 01-21-2025

Hello @luis_abreu, If your requirement is to bypass security scans then URL Access feature is able to do it. https://docs.fortinet.com/document/fortiweb/7.4.6/administration-guide/232579/restricting-access-based-on-specific-urls >> Match the URL Acce...

shafiq23 · 11-28-2024

Hello @defsdefs12, FortiADC 7.6.0 now supports HA cluster up to 8 member nodes. Please refer New Features documentation. https://docs.fortinet.com/document/fortiadc/7.6.0/new-features/092029/high-availability Thanks. Regards, Shafiq

shafiq23 · 11-26-2024

Hey @defsdefs12, I'd suggest to start with understanding the HA deployment modes and redundancy objectives to be met. You can refer below documentation as it provides sample configuration, topology, how traffic flows in HA and troubleshooting steps.h...

shafiq23 · 11-07-2024

Hello @sndyblz, if user source IP is real client IP, you can use Client IP exception. 1. Identify which XSS category was triggered. e.g HTML Tag Based XSS Injection 2. Set Client IP exception. Thanks!

User Statistics

User Activity

Technical Tip: Rebuild log database

Technical Tip: Known attack signature exception rule

Technical Tip: IP Fragmentation Protection

Technical Tip: High Availability status not in Sync - scripting files on HA diff

Technical Tip: Monitor Blocked IPs page via REST API