Solution for Fortiweb IP List limitation

Solution for Fortiweb IP List limitation

The issue is only 256 IP-Lists can be added to one IP-List.

But fortunately, Fortinet added the IP group function in version 7.2, which can define a larger number of IP addresses.

And IP-list can refer to IP-group.?

Steps One :

1-In fortiweb page in administrative domain select root option?

2-Server Objects

2-Go to IP group

3-Create New IP group and choose a name and then click “OK” .

4-On the same page, you can choose one of the available options?

4-1 Create new and enter IPs manually

4-2 To import IP addresses from a prepared text file, you can follow these steps as an example: (e.g. 1.2.3.4,2001::1,1.2.3.4-1.2.3.40,2001::1-2001::100)

Steps Two :

1-Go to IP Protection Tab and select IP List as shown.

2-Create a new IP List within the IP Protection tab

3-Choose Name and other function as well (Acting on your policy is important.)

then click “OK” .

4-In the same page choose create new and in new page select the "Type" options and choose "IP Group" in detail.

5-After selecting the IP group, please scroll down the box and choose the IP group that you created in step one then click “OK”.?

(If you haven't created an IP group yet, please follow the procedure from the first step to create a new IP group).

Step three:

1-On the left side of the page, locate and click on the "Policy" and select web protection profile to create new protection profile for your policy role.

2-Click Create new and fill the name box.

3-access IP protection filed.

4-Finslly IP List, scroll down and choose your IP List that created in first step.