uni
Mar 23, 2018Altostratus
ASM policy not blocking invalid host headers
I've trying to limit access to a specific hostname. I've added the desired host name in Security/Application/Headers/Host Names. The policy is enforcing (e.g. GeoIP blocking is working), but it still allows other host names. The log shows the entries with the unwanted host header.
Any tips? Is there something else I need to turn on?