[AF] Server risk function prompts that Services server is not protected
Problem Description
Server risk warning Medium running status Recently found that Services server is not protected, but check this IP has been configured in the security Policies, as follows:
536155b60761127c0a.png (200.89 KB)
Process——
- The server risk is a Passive Vulnerability Scan report. Check the Passive Vulnerability Scan report to confirm that the port detected by the report is 8011, as follows:
928305b60763a6628c.png (171 KB) - Check the configuration of the Web App Firewall Policies. The configuration path is [Server Protection]–>[Web App Firewall]. It is found that 8011 is not added to the Policies detection port, as follows:
126815b60764c37609.png (150.35 KB)
Root cause
The detection port in the real-time vulnerability risk is not included in the Web App Firewall Policies.
solution
Add the server protection port to the http port of Web App Firewall application protection.
Suggestions and Conclusion
Before putting Local on the shelf, confirm in advance which open server ports of the Services server are available, and then add these ports to the Web App Firewall.
Original Link
https://support.sangfor.com.cn/cases/list?product_id=13&type=1&category_id=222&isOpen=true