Imperva Cyber Community

 View Only
  • 1.  Whitelist/Blocklist exception

    Posted 25 days ago
    Hello community :)

    Hope you will help me to understand how I can add exceptions parameters to my Web Application Custom.

    I created this Web Application Custom policy and I want to block everything behind the prefix "/" :

    But I need to add exception in order to not block some URLs. For example : Block prefix "/" and except prefix "/test".

    How can I configure this?

    Thanks in advance for your help :)

    Best regards,
    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Enzo
    Technical User
    ------------------------------


  • 2.  RE: Whitelist/Blocklist exception

    Posted 25 days ago

    Hi Enzo,

    You may be able to accomplish this with a custom Web Profile policy.

    You can review the current web profile under Main > Profile > Overview

    By default, a positive security model is not applied to the profile data. However, this can be enabled with a simple checkbox under the Web Profile Policy.


    PLEASE BE AWARE, by default - all web profiles share the same policy. 


    This means that you can negatively impact other applications by blocking on "Unauthorized URL Access". It is highly recommended that you create a new Web Profile Policy and apply only to the web application for which you want to enforce blocks on Unauthorized URL Access. 

    As always, test this in your test environment prior to applying in production - and always follow your organization's change control policies.

    Thanks.




  • 3.  RE: Whitelist/Blocklist exception

    Posted 22 days ago
    Hi Enzo,

    You can use Lookup Data Set Search like below (you should modify related fields regarding to your request) to achieve your goal:



    ------------------------------
    Cezmi Cal
    technical support engineer
    Barikat Cyber Security
    Ankara
    ------------------------------