How can I add a header to be illegal in the AWAF product, previously ASM.
The ASM for instance allows you to manually add "Allowed URLs" and "Disallowed URLs". However, I could only manually add "Allowed Headers" but could not find a way to manually add "Disallowed Headers". I know I can do that in an I-rule, but my aim was to do it in the GUI and return the default block page.
Solved! Go to Solution.
In the above example, I have tried to use a regular expression instead of the contain string criteria, which is ^badheader. This means that the header value string must start with badheader. The issue though is that did not work. I will put this on the forum too.