Fortinet 512 FortiWeb 5.0 Patch 6 Administration Guide
6. Click Scan Web Site URLs Option’s blue arrow to expand the section, then configure the
following:
7. Click OK.
8. To use the profile, select it in a web vulnerability scan policy (see “Running vulnerability
scans” on page 513).
Setting name Description
Crawl entire
website
automatically
Select this option to automatically follow links leading from
the initial starting point that you configured in Hostname/IP
or URL. The vulnerability scanner will stop following links
when it has scanned the number of URLs configured in
Crawl URLs Limit.
Alternatively, select Specify URLs for scanning.
Crawl URLs Limit Type the maximum number of URLs to scan for
vulnerabilities while automatically crawling links leading from
the initial starting point.
Note: The actual number of URLs scanned could exceed
this limit if the vulnerability scanner reaches the limit but has
not yet finished crawling all links on a page that it has already
started to scan.
Specify URLs for
scanning
Select this option to manually specify which URLs to scan,
such as /login.do, rather than having the vulnerability
scanner automatically crawl the web site. Enter each URL on
a separate line in the text box.
You can enter up to 10,000 URLs.
Exclude scanning
following URLs
Enable to exclude specific URLs, such as /addItem.cfm,
from the vulnerability scan. Enter each URL on a separate
line in the text box.
This may be useful to accelerate the scan if you know that
some URLs do not need scanning. It could also be useful if
you are scanning a live web site and wish to prevent the
scanner from inadvertently adding information to your
databases.
You can enter up to 1,000 URLs.