Filter by Content

Blocking requests that do not conform to content policies

There are several ways to filter requests based on their content.

Recommended Method: Session Profiling

Create one or more lists of content filters in Session Profiling, with appropriate tags.
Create ACL Policies for each tag with appropriate actions (Bypass, Deny, or Allow).
Include the ACL Policies in one or more ACL Profiles.
Include the ACL Profiles in one or more Security Profiles.

Other Methods

Custom Signatures can be used for specifying content restrictions. They are included within ACL Policies, which are used within Profiles, which are assigned to various locations of your site/application on the Web Proxy page.

Args Analysis examines the characters found in arguments. Depending on its mode, it can block requests if unexpected characters are found, or pass them on to the WAF for further inspection. It can also act as an inverse content filter; those requests with arguments which contain only whitelisted characters can bypass WAF filtering.

Custom Signatures and Args Analysis will be deprecated in a future release. For content filtering, it is recommended that you use the first method based on Session Profiling instead.

PreviousControl Caching Behavior NextQuickly Block an Attacker

Last updated 2 years ago