WAF
WAFOverrides
ModelsExpand Collapse
Override { id, description, groups, 5 more }
An informative summary of the current URI-based WAF override.
An object that allows you to enable or disable WAF rule groups for the current WAF override. Each key of this object must be the ID of a WAF rule group, and each value must be a valid WAF action (usually default or disable). When creating a new URI-based WAF override, you must provide a groups object or a rules object.
The relative priority of the current URI-based WAF override when multiple overrides match a single URL. A lower number indicates higher priority. Higher priority overrides may overwrite values set by lower priority overrides.
Specifies that, when a WAF rule matches, its configured action will be replaced by the action configured in this object.
An object that allows you to override the action of specific WAF rules. Each key of this object must be the ID of a WAF rule, and each value must be a valid WAF action. Unless you are disabling a rule, ensure that you also enable the rule group that this WAF rule belongs to. When creating a new URI-based WAF override, you must provide a groups object or a rules object.
RewriteAction { block, challenge, default, 2 more } Specifies that, when a WAF rule matches, its configured action will be replaced by the action configured in this object.
Specifies that, when a WAF rule matches, its configured action will be replaced by the action configured in this object.
WAFRule = map["challenge" or "block" or "simulate" or 2 more]An object that allows you to override the action of specific WAF rules. Each key of this object must be the ID of a WAF rule, and each value must be a valid WAF action. Unless you are disabling a rule, ensure that you also enable the rule group that this WAF rule belongs to. When creating a new URI-based WAF override, you must provide a groups object or a rules object.
An object that allows you to override the action of specific WAF rules. Each key of this object must be the ID of a WAF rule, and each value must be a valid WAF action. Unless you are disabling a rule, ensure that you also enable the rule group that this WAF rule belongs to. When creating a new URI-based WAF override, you must provide a groups object or a rules object.
WAFPackagesGroups
Get a WAF rule group
Update a WAF rule group
ModelsExpand Collapse
Group { id, description, mode, 5 more }
mode: "on" or "off"Defines the state of the rules contained in the rule group. When on, the rules in the group are configurable/usable.
Defines the state of the rules contained in the rule group. When on, the rules in the group are configurable/usable.
WAFPackagesRules
ModelsExpand Collapse
RuleListResponse = { id, allowed_modes, description, 4 more } or { id, allowed_modes, default_mode, 5 more } or { id, allowed_modes, description, 4 more } When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
WAFManagedRulesAnomalyRule { id, allowed_modes, description, 4 more } When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
WAFManagedRulesTraditionalDenyRule { id, allowed_modes, default_mode, 5 more } When triggered, traditional WAF rules cause the firewall to immediately act upon the request based on the configuration of the rule. A ‘deny’ rule will immediately respond to the request based on the configured rule action/mode (for example, ‘block’) and no other rules will be processed.
When triggered, traditional WAF rules cause the firewall to immediately act upon the request based on the configuration of the rule. A ‘deny’ rule will immediately respond to the request based on the configured rule action/mode (for example, ‘block’) and no other rules will be processed.
allowed_modes: array of "default" or "disable" or "simulate" or 2 moreDefines the list of possible actions of the WAF rule when it is triggered.
Defines the list of possible actions of the WAF rule when it is triggered.
default_mode: "disable" or "simulate" or "block" or "challenge"Defines the default action/mode of a rule.
Defines the default action/mode of a rule.
WAFManagedRulesTraditionalAllowRule { id, allowed_modes, description, 4 more } When triggered, traditional WAF rules cause the firewall to immediately act on the request based on the rule configuration. An ‘allow’ rule will immediately allow the request and no other rules will be processed.
When triggered, traditional WAF rules cause the firewall to immediately act on the request based on the rule configuration. An ‘allow’ rule will immediately allow the request and no other rules will be processed.
RuleEditResponse = { id, allowed_modes, description, 4 more } or { id, allowed_modes, default_mode, 5 more } or { id, allowed_modes, description, 4 more } When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
WAFManagedRulesAnomalyRule { id, allowed_modes, description, 4 more } When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
When triggered, anomaly detection WAF rules contribute to an overall threat score that will determine if a request is considered malicious. You can configure the total scoring threshold through the ‘sensitivity’ property of the WAF package.
WAFManagedRulesTraditionalDenyRule { id, allowed_modes, default_mode, 5 more } When triggered, traditional WAF rules cause the firewall to immediately act upon the request based on the configuration of the rule. A ‘deny’ rule will immediately respond to the request based on the configured rule action/mode (for example, ‘block’) and no other rules will be processed.
When triggered, traditional WAF rules cause the firewall to immediately act upon the request based on the configuration of the rule. A ‘deny’ rule will immediately respond to the request based on the configured rule action/mode (for example, ‘block’) and no other rules will be processed.
allowed_modes: array of "default" or "disable" or "simulate" or 2 moreDefines the list of possible actions of the WAF rule when it is triggered.
Defines the list of possible actions of the WAF rule when it is triggered.
default_mode: "disable" or "simulate" or "block" or "challenge"Defines the default action/mode of a rule.
Defines the default action/mode of a rule.
WAFManagedRulesTraditionalAllowRule { id, allowed_modes, description, 4 more } When triggered, traditional WAF rules cause the firewall to immediately act on the request based on the rule configuration. An ‘allow’ rule will immediately allow the request and no other rules will be processed.
When triggered, traditional WAF rules cause the firewall to immediately act on the request based on the rule configuration. An ‘allow’ rule will immediately allow the request and no other rules will be processed.