Imperva Cyber Community

 View Only
  • 1.  Whitelist/Blocklist exception

    Posted 06-03-2022 08:09
    Hello community :)

    Hope you will help me to understand how I can add exceptions parameters to my Web Application Custom.

    I created this Web Application Custom policy and I want to block everything behind the prefix "/" :

    But I need to add exception in order to not block some URLs. For example : Block prefix "/" and except prefix "/test".

    How can I configure this?

    Thanks in advance for your help :)

    Best regards,
    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Enzo
    Technical User
    ------------------------------


  • 2.  RE: Whitelist/Blocklist exception

    Posted 06-03-2022 12:34

    Hi Enzo,

    You may be able to accomplish this with a custom Web Profile policy.

    You can review the current web profile under Main > Profile > Overview

    By default, a positive security model is not applied to the profile data. However, this can be enabled with a simple checkbox under the Web Profile Policy.


    PLEASE BE AWARE, by default - all web profiles share the same policy. 


    This means that you can negatively impact other applications by blocking on "Unauthorized URL Access". It is highly recommended that you create a new Web Profile Policy and apply only to the web application for which you want to enforce blocks on Unauthorized URL Access. 

    As always, test this in your test environment prior to applying in production - and always follow your organization's change control policies.

    Thanks.




  • 3.  RE: Whitelist/Blocklist exception

    Posted 06-06-2022 07:05
    Hi Enzo,

    You can use Lookup Data Set Search like below (you should modify related fields regarding to your request) to achieve your goal:



    ------------------------------
    Cezmi Cal
    technical support engineer
    Barikat Cyber Security
    Ankara
    ------------------------------