Forum Discussion
Wasfi_Bounni
Cirrocumulus
CirrocumulusHow can I add an "Illegal Header" in the Advanced WAF.
Hi;
How can I add a header to be illegal in the AWAF product, previously ASM.
The ASM for instance allows you to manually add "Allowed URLs" and "Disallowed URLs". However, I could only manually add "Allowed Headers" but could not find a way to manually add "Disallowed Headers". I know I can do that in an I-rule, but my aim was to do it in the GUI and return the default block page.
Kindly
Wasfi
Hi Wasfi,
you can achieve this by adding the Header name as a custom attacking signature.
Here is the to the documentation for v14.1:
Writing Custom Attack Signatures
And here a (not very sophisticated) example:
KR
Daniel
- Daniel_Wolf
MVP
Hi Wasfi,
you can achieve this by adding the Header name as a custom attacking signature.
Here is the to the documentation for v14.1:
Writing Custom Attack Signatures
And here a (not very sophisticated) example:
KR
Daniel
Wasfi_BounniHi Daniel;
In the above example, I have tried to use a regular expression instead of the contain string criteria, which is ^badheader. This means that the header value string must start with badheader. The issue though is that did not work. I will put this on the forum too.
Kindly
Wasfi
- Wasfi_Bounni
Hi Daniel;
Thank you for your help.
Kindly
Wasfi