Fortinet 5.0 Patch 6

Fortinet 323 FortiWeb 5.0 Patch 6 Administration Guide

4. Click OK.

5. Click Create New to add an entry to the set.

A dialog appears.

6. Configure these settings:

Severity When rule violations are recorded in the attack log, each log message

contains a Severity Level (severity_level) field. Select which severity

level the FortiWeb appliance will use when it logs a violation of the rule:

•Low

•Medium

• High

The default value is High.

Trigger

Action

Select which trigger, if any, that the FortiWeb appliance will use when it logs

and/or sends an alert email about a violation of the rule. See “Configuring

triggers” on page 557.

Setting

name

Description

ID Type the index number of the individual rule within the URL access rule, or

keep the field’s default value of auto to let the FortiWeb appliance

automatically assign the next available index number.

Source

Address

Enable to add the client’s source IP address as a criteria for matching the

URL access rule. Also configure Source Address Type and either IP or

Domain.

Source

Address

Type

Select how you want to define matching client source IPs, by either:

•IP — Configure IP.

•Domain — Configure Domain.

IP Type the single IP address that a client source IP must match, such as a

trusted private network IP address (e.g. an administrator’s computer,

172.16.1.20). (Subnets and/or IP address ranges are not currently

supported.)

This option appears only if Source Address Type is IP.

Setting

name

Description