Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

CLI Reference

waf base-signature-disable

Use this command to disable individual or whole categories of data leak and attack signatures in every signature group that currently exists.

For example, if you disable a certain signature ID with this command, the signature ID in every signature group you have defined will be disabled.

To use this command, your administrator account’s access control profile must have either w or rw permission to the wafgrp area. For details, see Permissions.

Syntax

config waf base-signature-disable

edit "<signature-ID_name>"

next

end

Variable Description Default

"<signature-ID_name>"

Enter the name of an individual signature or signature category ID. The maximum length is 63 characters.

For example, to disable the first cross-site scripting attack signature everywhere it is currently selected, you would enter:

edit 010000001

No default.

Example

This example globally disables the XSS signature whose ID is 010000001.

config waf base-signature-disable

edit "010000001"

next

end

Related topics

waf base-signature-disable

Use this command to disable individual or whole categories of data leak and attack signatures in every signature group that currently exists.

For example, if you disable a certain signature ID with this command, the signature ID in every signature group you have defined will be disabled.

To use this command, your administrator account’s access control profile must have either w or rw permission to the wafgrp area. For details, see Permissions.

Syntax

config waf base-signature-disable

edit "<signature-ID_name>"

next

end

Variable Description Default

"<signature-ID_name>"

Enter the name of an individual signature or signature category ID. The maximum length is 63 characters.

For example, to disable the first cross-site scripting attack signature everywhere it is currently selected, you would enter:

edit 010000001

No default.

Example

This example globally disables the XSS signature whose ID is 010000001.

config waf base-signature-disable

edit "010000001"

next

end

Related topics