Fortinet 326 FortiWeb 5.0 Patch 6 Administration Guide
Advanced access control rules provide a degree of flexibility for these types of complex
conditions. You can combine any or all of these criteria:
•source IP
• rate limit
•HTTP header
•URL
In the rule, add all criteria that you require allowed traffic to match.
To configure an advanced access control rule
1. Go to Web Protection > Advanced Protection > Custom Rule.
To access this part of the web UI, your administrator’s account access profile must have
Read and Write permission to items in the Web Protection Configuration category. For
details, see “Permissions” on page 47.
2. Click Create New.
A dialog appears.
X-header-derived client source IPs (see “Defining your proxies, clients, & X-headers” on
page 266) do not support this feature in this release. If FortiWeb is deployed behind a load
balancer or other web proxy that applies source NAT, this feature will not work.