Rules Page
Custom Rules page
WAF ONBOARDING
THREAT ANALYSIS
HTTP SUPPORT
PROTECTION USE CASES
DETECTION TECHNIQUES
In this page you can add/modify as much as rules you need.
Lets have a deep look in to each elements in rules page.
In this topic:
1. Create rule
2. Define a rule filter
3. Add rule
4. Redirect uri
5. Rate Limit
6. Custom error text
7. IP/Geo reputation and URL Whitelist
1. Create Rule
In home page, choose the domain where rules need to be applied.
And then go to rules page.
Select the drop down menu and add the value.
Once you add/modify rules click on "Update" button to deploy the rule.
2. Define a rule filter
Define a filter for the rule using predefined parameters.
Examples:
Here country equal Afghanistan will be blocked.
When request uri regex matches the user inputted pattern(here it is used regex of /a), WAF will block it.
User can enter regular expression of user agent that needs to be blocked.
The following parameters are available for use when defining rules.
IP : IP address of client
COUNTRY : The name of the country where the client sending the request is located.
ASN : The client IP Autonomous System Number (ASN).
USER AGENT : Checks for the specified string pattern in the User-Agent header in the client request.
COOKIE : A cookie is an HTTP request header i.e. used in the requests sent by the user to the server.
REQUEST URI : The part of a URL that identifies a resource, for example, /images/daily-ad.jpg.
HTTP METHOD : POST, GET, PUT, PATCH, and DELETE
REFERRER : Referrer is the URL from which came a request received by a server.
CONTENT TYPE : The value of the Content-Type HTTP header in the request.
CONTENT LENGTH : The Content-Length header indicates the size of the message body, in bytes, sent to the recipient.
URL LENGTH : The length of the URL.
3. ADD rule
Click on add rules to add more rules.
Select AND/OR logic.
Click on Update.
Examples:
If you want to add more rules and set in to groups there are options to add group. Selecting AND & OR logic depends on user requirements. There is limits for adding rules according to your Prophaze plan.
4. Redirect uri
Examples:
Redirect to new site
5. Rate Limit
6. Custom error text
Enter status code and text and then click on apply.
Examples:
Error text will be displayed in browser for the HTTP status code entered.
7. IP/Geo reputation and URL Whitelist
In traffic and attack pages user have an option to blacklist and whitelist ip/country. All the data are displayed in rules page.
Following parameters are showed in this fields.
IP/country blocked
IP/country whitelisted
URI whitelisted