Protocol_Inspection_Profile (object)¶
Protocol Inspection Profile used for configurable BIG-IP AFM intrusion prevention. Note: Protocol Inspection Profiles are only supported in tmos version 13.1+
Properties (* = required):
| name | type(s) | default | allowed values | description |
|---|---|---|---|---|
| autoAddNewInspections | boolean | false | true, false | Specifies whether new inspections delivered via IPS IM package will be automatically added to this profile |
| autoPublish | boolean | false | true, false | Specifies whether the inspections will be automatically updated to the suggested action after the staging period |
| class | string | “Protocol_Inspection_Profile” | ||
| collectAVRStats | boolean | true | true, false | If true, AVR will collect data from the intrusion prevention profile |
| defaultFromProfile | string | Specifies the parent profile. If specified, the new profile will be cloned from the parent | ||
| enableComplianceChecks | boolean | true | true, false | Specifies whether the compliance checks will be enabled for this profile |
| enableSignatureChecks | boolean | true | true, false | Specifies whether the signature checks will be enabled for this profile |
| label | string | “^[^x00-x1fx22#&*<>?x5b-x5d`x7f]*$” | Optional friendly name for this object. Allows 0-64 chars, excluding a few likely to cause trouble with string searching, JS, TCL, or HTML | |
| remark | string | “^[^x00-x1fx22x5cx7f]*$” | Arbitrary (brief) text pertaining to this object. Allows 0-64 chars, excluding only control characters, double-quote, and backslash. This is permissive enough that you should worry about XSS attacks | |
| services | array | Specifies the services and service checks for this profile |
Protocol_Inspection_Profile_Service_Compliance_Checks (array)¶
A list of compliance checks to attach to the Protocol Inspection Profile
Protocol_Inspection_Profile_Service_Signature_Checks (array)¶
A list of signature checks to attach to the Protocol Inspection Profile