https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180049#M173 <P>Please open a TAC case: <A href="https://help.checkpoint.com" target="_blank">https://help.checkpoint.com</A></P> Fri, 05 May 2023 10:54:32 GMT _Val_ 2023-05-05T10:54:32Z https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180039#M172 <P>Hello</P><P>Today I have received reports that AppSec is blocking content on a "Detect Only" policy. I can reproduce this behavior.</P><P>Unfortunately, I can't find any blocking events at all. When the incident occurs, I receive an ID. When I put the ID (e.g. 40a005c0-35e2-48f8-b19c-dc2c87f81686) in "All Events", I get nothing. I can't find a field for this event.<BR />Am I missing something? How can I find this block? I have opened a case for the original problem.</P><P>Another question. I am using a Check Point Cloudguard AppSec GW running Docker:</P><P>IMAGE COMMAND CREATED STATUS PORTS NAMES<BR />cp_nginx_gaia "/usr/bin/entrypoint.sh nginx -g 'daemon off;'" 2 days ago Up 2 days ago cp_nginx_gaia</P><P>This image comes with a preconfigured timeout for web requests of 60 seconds (NGINX default).</P><P>I would like to increase this limit to i.e. 300s. Is there any way to achieve this and make this change permanent?</P><P>Cheers Christoph</P><P>&nbsp;</P> Fri, 05 May 2023 08:53:02 GMT https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180039#M172 Christoph 2023-05-05T08:53:02Z https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180049#M173 <P>Please open a TAC case: <A href="https://help.checkpoint.com" target="_blank">https://help.checkpoint.com</A></P> Fri, 05 May 2023 10:54:32 GMT https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180049#M173 _Val_ 2023-05-05T10:54:32Z https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180829#M175 <P>Hi Christoph,<BR />As&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/181">@_Val_</a>&nbsp;advised, for any technical issue you may have - please open a TAC case to get the fast and best response.</P> <P>Regarding your question about the timeouts, you can configure different timeouts as you like via Advanced Settings.<BR />Click <A href="https://appsec-doc.inext.checkpoint.com/how-to/edit-reverse-proxy-advanced-settings-for-a-web-asset" target="_self">here</A> for more details in our Admin Guide.</P> Sun, 14 May 2023 10:24:14 GMT https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180829#M175 yuvalmamka 2023-05-14T10:24:14Z https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180863#M177 <P>Hey Yuval</P><P>The block was solved by a ticket and by you:)</P><P>The advanced dialog looks exactly as the information I was looking for. Thank you very much.</P><P>Best regards</P><P>Christoph</P> Mon, 15 May 2023 06:46:17 GMT https://community.checkpoint.com/t5/WAF/AppSec-generating-blocks-in-a-detect-policy-plus-customize/m-p/180863#M177 Christoph 2023-05-15T06:46:17Z