Fortinet 5.0 Patch 6 Compression & decompression

Fortinet 456 FortiWeb 5.0 Patch 6 Administration Guide

Compression & decompression

Similar to SSL/TLS, you can either completely offload compression to FortiWeb to save

resources on your web servers, or temporarily decompress only as needed to scan and/or

modify traffic that has already been compressed by your web servers.

If necessary, you can exempt HTTP Host: names and URLs from compression or

decompression by FortiWeb. Generally, if a specific web server already applies compression,

and if a specific response never needs to be scanned, compressed, or rewritten, it should be

exempt from compression/decompression by FortiWeb.

To configure a rule exclusion

1. Go to Application Delivery > Compression > Exclusion Rule.

To access this part of the web UI, your administrator’s account access profile must have

Read and Write permission to items in the Web Protection Configuration category. For

details, see “Permissions” on page 47.

2. Click Create New.

A dialog appears.

3. In Name, type a name that can be referenced by other parts of the configuration. Do not use

spaces or special characters. The maximum length is 35 characters.

4. Click OK.

If compressed, a request or response usually cannot be scanned, rewritten, or otherwise

modified by FortiWeb. If you exempt vulnerable URLs, this will compromise the security of your

network.

Clear all

Edit

Delete