Rules Page

Custom Rules page

In this page you can add/modify as much as rules you need.

Lets have a deep look in to each elements in rules page.

In this topic:

1. Create rule

2. Define a rule filter

3. Add rule

4. Redirect uri

5. Rate Limit

6. Custom error text

7. IP/Geo reputation and URL Whitelist

1. Create Rule

In home page, choose the domain where rules need to be applied.

And then go to rules page.

Select the drop down menu and add the value.

Once you add/modify rules click on "Update" button to deploy the rule.

Prophaze WAF Rule

2. Define a rule filter

Define a filter for the rule using predefined parameters.

Examples:

Here country equal Afghanistan will be blocked.

Define a rule filter - Prophaze WAF

When request uri regex matches the user inputted pattern(here it is used regex of /a), WAF will block it.

request uri - Prophaze WAF

User can enter regular expression of user agent that needs to be blocked.

user agent - Prophaze WAF

The following parameters are available for use when defining rules.

IP : IP address of client

COUNTRY : The name of the country where the client sending the request is located.

ASN : The client IP Autonomous System Number (ASN).

USER AGENT : Checks for the specified string pattern in the User-Agent header in the client request.

COOKIE : A cookie is an HTTP request header i.e. used in the requests sent by the user to the server.

REQUEST URI : The part of a URL that identifies a resource, for example, /images/daily-ad.jpg.

HTTP METHOD : POST, GET, PUT, PATCH, and DELETE

REFERRER : Referrer is the URL from which came a request received by a server.

CONTENT TYPE : The value of the Content-Type HTTP header in the request.

CONTENT LENGTH : The Content-Length header indicates the size of the message body, in bytes, sent to the recipient.

URL LENGTH : The length of the URL.

3. ADD rule

Click on add rules to add more rules.

Select AND/OR logic.

Click on Update.

Examples:

ADD rule - Prophaze WAF

If you want to add more rules and set in to groups there are options to add group. Selecting AND & OR logic depends on user requirements. There is limits for adding rules according to your Prophaze plan.

4. Redirect uri

Examples:

Redirect to new site

Redirect to new site - Prophaze WAF

5. Rate Limit

Rate Limit - Prophaze WAF

6. Custom error text

Enter status code and text and then click on apply.

Examples:

Error text will be displayed in browser for the HTTP status code entered.

Custom error text - Prophaze WAF

7. IP/Geo reputation and URL Whitelist

In traffic and attack pages user have an option to blacklist and whitelist ip/country. All the data are displayed in rules page.

Following parameters are showed in this fields.

IP/country blocked

IP/country whitelisted

URI whitelisted

IP/Geo reputation and URL Whitelist - Prophaze WAF

Preview

Attack Analytics

Next

Attack Types