config : waf parameter-validation-rule
 
waf parameter-validation-rule
Use this command to configure parameter validation rules, each of which is a group of input rule entries.
To apply parameter validation rules, select them within an inline or offline protection profile. For details, see “config waf web-protection-profile inline-protection” or “config waf web-protection-profile offline-protection”.
Before you can configure parameter validation rules, you must first configure one or more input rules. For details, see “config waf input-rule”.
You can use SNMP traps to notify you when a parameter validation rule is enforced. For details, see “config system snmp community”.
To use this command, your administrator account’s access control profile must have either w or rw permission to the wafgrp area. For more information, see “Permissions”.
Syntax
config waf parameter-validation-rule
edit <rule_name>
config input-rule-list
edit <entry_index>
set input-rule <input‑rule_name>
next
end
next
end
Variable
Description
Default
<rule_name>
Type the name of a new or existing rule. The maximum length is 35 characters.
To display the list of existing rules, type:
edit ?
No default.
<entry_index>
Type the index number of the individual entry in the table. The valid range is from 1 to 9,999,999,999,999,999,999.
No default.
input-rule <input‑rule_name>
Type the name of an input rule to use in the parameter validation rule. The maximum length is 35 characters.
To display the list of existing input rules, type:
set input-rule ?
No default.
Example
This example configures a parameter validation rule that applies two input rules.
config waf parameter-validation-rule
edit "parameter_validator1"
config input-rule-list
edit 1
set input-rule "input_rule1"
next
edit 2
set input-rule "input_rule2"
next
end
next
end
Related topics
config waf input-rule
config waf web-protection-profile inline-protection
config waf web-protection-profile offline-protection