Hello,
I have been toying around with getting an internal Confluence and Jira site (one virtual service instance) to work via Web Protection for users outside the internal network. It took some researching, testing and looking through the logs a lot to get everything working ok. Once we got it working I got a lot of questions for sharing the firewall profile, so here it is for those interested:
- Clone the advanced protection profile and rename it.
- Disable:
- Rigid filtering, Static URL hardening, Form hardening, Limit scan size, Skip remote lookups for clients with bad reputation and XSS attacks form the threat filter categories
- Skip filter rules: 981231,981204,950901,981243,981245,981248,981173,973300,973304,973306,973335
- Use this as firewall profile in the Virtual website settings and everything should be working ok.
The only thing I encounter in the logs are cookie warnings and a occasional cookie error.
This thread was automatically locked due to age.