Fortinet 323 FortiWeb 5.0 Patch 6 Administration Guide
4. Click OK.
5. Click Create New to add an entry to the set.
A dialog appears.
6. Configure these settings:
Severity When rule violations are recorded in the attack log, each log message
contains a Severity Level (severity_level) field. Select which severity
level the FortiWeb appliance will use when it logs a violation of the rule:
•Low
•Medium
• High
The default value is High.
Trigger
Action
Select which trigger, if any, that the FortiWeb appliance will use when it logs
and/or sends an alert email about a violation of the rule. See “Configuring
triggers” on page 557.
Setting
name
Description
ID Type the index number of the individual rule within the URL access rule, or
keep the field’s default value of auto to let the FortiWeb appliance
automatically assign the next available index number.
Source
Address
Enable to add the client’s source IP address as a criteria for matching the
URL access rule. Also configure Source Address Type and either IP or
Domain.
Source
Address
Type
Select how you want to define matching client source IPs, by either:
•IP — Configure IP.
•Domain — Configure Domain.
IP Type the single IP address that a client source IP must match, such as a
trusted private network IP address (e.g. an administrator’s computer,
172.16.1.20). (Subnets and/or IP address ranges are not currently
supported.)
This option appears only if Source Address Type is IP.
Setting
name
Description