config : waf parameter-validation-rule
waf parameter-validation-rule
Use this command to configure parameter validation rules, each of which is a group of input rule entries.
To apply parameter validation rules, select them within an inline or offline protection profile. For details, see
“config waf web-protection-profile inline-protection” or
“config waf web-protection-profile offline-protection”.
Before you can configure parameter validation rules, you must first configure one or more input rules. For details, see
“config waf input-rule”.
You can use SNMP traps to notify you when a parameter validation rule is enforced. For details, see
“config system snmp community”.
To use this command, your administrator account’s access control profile must have either
w or
rw permission to the
wafgrp area. For more information, see
“Permissions”.
Syntax
config waf parameter-validation-rule
config input-rule-list
next
end
next
end
Variable | Description | Default |
<rule_name> | Type the name of a new or existing rule. The maximum length is 35 characters. To display the list of existing rules, type: edit ? | No default. |
<entry_index> | Type the index number of the individual entry in the table. The valid range is from 1 to 9,999,999,999,999,999,999. | No default. |
input-rule <input‑rule_name> | Type the name of an input rule to use in the parameter validation rule. The maximum length is 35 characters. To display the list of existing input rules, type: set input-rule ? | No default. |
Example
This example configures a parameter validation rule that applies two input rules.
config waf parameter-validation-rule
edit "parameter_validator1"
config input-rule-list
edit 1
set input-rule "input_rule1"
next
edit 2
set input-rule "input_rule2"
next
end
next
end
Related topics