Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Allowing/Denying specific URL's

Hi,

Running an XG310. I have a web server running behind this device and also have a WAF rule for protection. I want to specify which URL's are accessable to the outside world. For example, if I was running www..123.com behind WAF.

www.123.com/everyone should be available

www.123.com/nobody should NOT be available.

Thanks for any help!

Stu



This thread was automatically locked due to age.
Parents
  • Additional info:

    I have a Protection policy set up for

    This has been added to a WAF rule for the specified domain

    My understanding was that is I add allowed URL's to the hardening area, the no other url's would be allowed. Is this presumption incorrect?

    Thanks

  • Almost right..
    Only the listed URLs may be accessed directly (entrance-url)
    Url contained within the allowed opened pages, are allowed to open afterwards to.
    ...so far the theory


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Reply
  • Almost right..
    Only the listed URLs may be accessed directly (entrance-url)
    Url contained within the allowed opened pages, are allowed to open afterwards to.
    ...so far the theory


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Children