Protocol_Inspection_Profile (object)

Protocol Inspection Profile used for configurable BIG-IP AFM intrusion prevention. Note: Protocol Inspection Profiles are only supported in tmos version 13.1+

Properties (* = required):

name type(s) default allowed values description
autoAddNewInspections boolean false true, false Specifies whether new inspections delivered via IPS IM package will be automatically added to this profile
autoPublish boolean false true, false Specifies whether the inspections will be automatically updated to the suggested action after the staging period
class string   “Protocol_Inspection_Profile”  
collectAVRStats boolean true true, false If true, AVR will collect data from the intrusion prevention profile
defaultFromProfile string     Specifies the parent profile. If specified, the new profile will be cloned from the parent
enableComplianceChecks boolean true true, false Specifies whether the compliance checks will be enabled for this profile
enableSignatureChecks boolean true true, false Specifies whether the signature checks will be enabled for this profile
label string   “^[^x00-x1fx22#&*<>?x5b-x5d`x7f]*$” Optional friendly name for this object. Allows 0-64 chars, excluding a few likely to cause trouble with string searching, JS, TCL, or HTML
remark string   “^[^x00-x1fx22x5cx7f]*$” Arbitrary (brief) text pertaining to this object. Allows 0-64 chars, excluding only control characters, double-quote, and backslash. This is permissive enough that you should worry about XSS attacks
services array     Specifies the services and service checks for this profile

Protocol_Inspection_Profile_Service_Compliance_Checks (array)

A list of compliance checks to attach to the Protocol Inspection Profile

Protocol_Inspection_Profile_Service_Signature_Checks (array)

A list of signature checks to attach to the Protocol Inspection Profile