Technology Groups

Application Security/WAF

 View Only

Discuss how to protect your web applications from malicious sources, DDoS attacks, sophisticated threats and more.

* This is a PUBLIC forum. Do not disclose any private information here. 

Latest Discussions

  • Hi Patrick, Could you please ask you local SE to raise a case to CSE Team by providing cnfig and pcap files? Best Regards ...

  • What you are describing is a feature set used more commonly by ADC technologies like F5 vs. traditional WAF, but is something to take into consideration for future development efforts. NOTE: FortiADC, which competes directly with F5, supports this ...

  • Hi Patrick, TOS/WOS fields will be lost in Reverse Proxy mode. Sent from my iPhone *** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended ...

  • Profile Picture

    RE: FortiWeb Best Practices

    Hello Rony, You will find Best Practice recommendations on FortiWeb Application Guide. Please see http://help.fortinet.com/fweb/601/index.htm#FortiWeb/fortiweb-admin/fine_tuning.htm?Highlight=best%20practice Thanks ...

  • Profile Picture

    RE: Chrome OS IPS security

    You need to check some best home security available today. ------------------------------ randy clark [Designation] 1212 [CompanyName] [City] [State] [Phone] ------------------------------

  • Profile Picture

    RE: Cookei session

    Hi, Is it a FortiGate firewall or web protection? I am not sure but If you are using Fortigate then Did you enabled " Remove Cookies " under the web filter profile in the Proxy option? Regards, Deepak Kumar NSE4

  • Hi, I saw some "Backdoor.DoublePulsar" in the logs. Is it VIP configured for this system? Current action is blocked on the firewall but it is also recommended to verify the DOS, DDOS configuration and Antivirus scanning with SSL along with IPS. ...

    1 person recommends this.
  • Hi Sotir - The WAF in FortiGate is not as robust a solution as our FortiWeb WAF. FortiGate provides basic "checklist" support and doesn't have things such as signature subscriptions, policy customizations and behavioral threat detection. The FortiGate ...

    1 person recommends this.
  • After I run a diagnose command I cannot see any invite messages but I will see the subsequent: diagnose debug disable diagnose debug reset diagnose. Essay Writing Services To disable SIP processing, input the commands: no fixup protocol sip 5060 no ...

  • Hi, WAF usually is meant to protect your webservers. I don't find it useful to use it on your LAN users if this is thr traffic going out of the company. Apply deep isnpection, AV, IPS, Webfilter,Appcontrol and you will be protect. If you need ATP, ...