A request was blocked by rule 981176, what does that mean?

If your Firewall Events indicate that we blocked your requests with rule 981176, this means the block was caused by OWASP. The OWASP ruleset includes many rules, and when any of them is matched, the “threat score” of the request increases. The Sensitivity setting (Low or High) for your zone translates to a threshold. If the cumulative score of all the matched OWASP rules exceeds that threshold, 981176 is triggered and blocks the request.

In effect this means that all requests that get blocked by OWASP will show in the Firewall Events of your Firewall app as blocked by 981176. If you click on “Rule(s) Triggered” you will see the individual OWASP rules that were matched to increase the request’s threat score. 

 

Not finding what you need?

95% of questions can be answered using the search tool. This is the quickest way to get a response.

Powered by Zendesk