Idprule, Idpruleaction – Amer Networks E5 CLI User Manual

3.50. IDPRule

Description

An IDP Rule defines a filter for matching specific network traffic. When the filter criterion is met,
the IDP Rule Actions are evaluated and possible actions taken.

Properties

Index

The index of the object, starting at 1. (Identifier)

Name

Specifies a symbolic name for the rule. (Optional)

SourceInterface

Specifies the name of the receiving interface to be
compared to the received packet.

SourceNetwork

Specifies the sender span of IP addresses to be
compared to the received packet.

DestinationInterface

Specifies the the destination interface to be
compared to the received packet.

DestinationNetwork

Specifies the span of IP addresses to be compared
to the destination IP of the received packet.

Service

Specifies a service that will be used as a filter
parameter when matching traffic with this rule.

Schedule

By adding a schedule to a rule, the security
gateway will only allow that rule to trigger at those
designated times. (Optional)

InsertionEvasion

Protect against insertion/evastion attacks. (Default:
Yes)

URIIllegalUTF8

Specifies what action to take if invalid UTF-8
characters are seen in a HTTP URI. (Default: Log)

URIIllegalHex

Specifies what action to take when invalid
hexencoding (%xx) is seen in a HTTP URI. (Default:
DropLog)

URIDoubleEncode

Specifies what action to take when seeing double
encoded characters in a HTTP URI. (Default: Ignore)

Comments

Text describing the current object. (Optional)

Note

If no

Index

is specified when creating an instance of this type, the object will be placed

last in the list and the

Index

will be equal to the length of the list.

3.50.1. IDPRuleAction

Chapter 3: Configuration Reference

165