Add Access rules for browser-based user authentication
Browser-based user authentication is not allowed by default in the Firewall Template policy. You must add Access rules that allows this traffic to the Engine Policy.
To reduce the risk of resource consumption or DoS (denial of service) attacks, we recommend limiting the number of connections from each source IP address. Under normal conditions, there should only be one connection at a time from each source IP address. However, incomplete connections or other network errors might temporarily result in more than one simultaneous connection attempt from the same IP address. Set the limit for your simultaneous connections according to your network environment so that the limit does not interfere with legitimate connection attempts.
For more details about the product and how to configure features, click Help or press F1.