Imperva Cyber Community

 View Only
  • 1.  Recommended number of Request - Too many URL Parameters

    Posted 03-02-2022 09:39
    Hi Team,

    Under HTTP/1.x Protocol Policy - Too many URL Parameters, we can see that the default max value is 1000, but based on documentation portal, it can be customized. My question is, is there any recommended value?



    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Oliver Naabay
    Engineer
    Makati
    ------------------------------


  • 2.  RE: Recommended number of Request - Too many URL Parameters
    Best Answer

    Posted 03-02-2022 16:15
    Hi,

    The recommended value is the default value. IMPERVA sets the default value so that the WAF's performance will be the best, and you have fewer numbers of logs in MX->monitor->alerts.
    Every single parameter and parameters options have to be checked by WAF's policies. If you will have a lot of parameters then WAF will be consumed performance a lot too.
    To reduce the number of parameters you can use plugins and patterns.
    Reduce the number of parameters is one of the most important things to do during the WAF implementation

    ------------------------------
    Karol Gruszczynski
    IT SECURITY EXPERT
    Trafford IT
    Warsaw
    ------------------------------



  • 3.  RE: Recommended number of Request - Too many URL Parameters

    Posted 03-03-2022 09:09
    Hi @Karol Gruszczyński,

    Thank you very much for this explanation.


    ------------------------------
    Oliver Naabay
    Engineer
    Makati
    ------------------------------