Protocol_Inspection_Profile (object)¶
Protocol Inspection Profile used for configurable BIG-IP AFM intrusion prevention
Properties (* = required):
| name | type(s) | default | allowed values | description |
|---|---|---|---|---|
| autoAddNewInspections | boolean | false | true, false | Specifies whether new inspections delivered via IPS IM package will be automatically added to this profile |
| autoPublish | boolean | false | true, false | Specifies whether the inspections will be automatically updated to the suggested action after the staging period |
| class | string | “Protocol_Inspection_Profile” | ||
| collectAVRStats | boolean | true | true, false | If true, AVR will collect data from the intrusion prevention profile |
| defaultFromProfile | string | Specifies the parent profile. If specified, the new profile will be cloned from the parent | ||
| enableComplianceChecks | boolean | true | true, false | Specifies whether the compliance checks will be enabled for this profile |
| enableSignatureChecks | boolean | true | true, false | Specifies whether the signature checks will be enabled for this profile |
| label | string | “^[^x00-x1fx22#&*<>?x5b-x5d`x7f]*$” | Optional friendly name for this object. Allows 0-64 chars, excluding a few likely to cause trouble with string searching, JS, TCL, or HTML | |
| remark | string | “^[^x00-x1fx22x5cx7f]*$” | Arbitrary (brief) text pertaining to this object. Allows 0-64 chars, excluding only control characters, double-quote, and backslash. This is permissive enough that you should worry about XSS attacks | |
| services | array | Specifies the services and service checks for this profile |
Protocol_Inspection_Profile_Service_Compliance_Check (object)¶
Defines a compliance check to attach to the Protocol Inspection Profile
Properties (* = required):
| name | type(s) | default | allowed values | description |
|---|---|---|---|---|
| action | string | “accept” | “accept”, “drop”, “reject” | Which action to perform on traffic matching the check |
| check* | string | The name of the check | ||
| log | boolean | true | true, false | Specifies whether to log the check |
| value | string | Value to use for the check. If a check accepts enumerable values, these should be delimited by spaces. |
Protocol_Inspection_Profile_Service_Signature_Check (object)¶
Defines a signature check to attach to the Protocol Inspection Profile
Properties (* = required):
| name | type(s) | default | allowed values | description |
|---|---|---|---|---|
| action | string | “accept” | “accept”, “drop”, “reject” | Which action to perform on traffic matching the check |
| check* | string | The name of the check | ||
| log | boolean | true | true, false | Specifies whether to log the check |