Fortinet black logo

CLI Reference

execute web-vulnerability-scan mitigate

execute web-vulnerability-scan mitigate

By analyzing the scan results in the WVS (Web Vulnerability Scan) report, FortiADC automatically generates a WAF profile to prevent the reported attacks.

In this command, you can specify the WVS reports to be analyzed, the name of the generated WAF profile, and the actions to be taken upon the attacks.

Syntax

execute web-vulnerability-scan mitigate id <id1,id2…> profile <profile-name> [high <action> medium <action> low <action>]

id <id1,id2…>

Specify the ID of the WVS report. You can separate multiple reports by ",".

profile <profile-name>
  • Enter a new name for the WAF profile generated to prevent the reported attacks, or

  • Enter the name of an existing profile. The WAF settings based on the scan report will be merged to an existing WAF profile. If there are conflict settings, the new ones will overwrite the existing ones.

high <action> Specify the action that FortiADC will take if High severity attacks are detected.
medium <action> Specify the action that FortiADC will take if Medium severity attacks are detected.
low <action> Specify the action that FortiADC will take if Low severity attacks are detected.

execute web-vulnerability-scan mitigate

By analyzing the scan results in the WVS (Web Vulnerability Scan) report, FortiADC automatically generates a WAF profile to prevent the reported attacks.

In this command, you can specify the WVS reports to be analyzed, the name of the generated WAF profile, and the actions to be taken upon the attacks.

Syntax

execute web-vulnerability-scan mitigate id <id1,id2…> profile <profile-name> [high <action> medium <action> low <action>]

id <id1,id2…>

Specify the ID of the WVS report. You can separate multiple reports by ",".

profile <profile-name>
  • Enter a new name for the WAF profile generated to prevent the reported attacks, or

  • Enter the name of an existing profile. The WAF settings based on the scan report will be merged to an existing WAF profile. If there are conflict settings, the new ones will overwrite the existing ones.

high <action> Specify the action that FortiADC will take if High severity attacks are detected.
medium <action> Specify the action that FortiADC will take if Medium severity attacks are detected.
low <action> Specify the action that FortiADC will take if Low severity attacks are detected.