Skip to content

Query

About

General View of Query

When a new path is added under the Query tab, the view is as shown below. By clicking the Add Common Rule for Query button, Query control is opened for the relevant path. Now, when a request with a Query is made to this path, it will be subject to WAF rules within the added rules. Before clicking the Add Common Rule for Query button, it appears as Rule Source > All Paths. The reason for this is that no Query control has been made on the relevant path, so the Query control has been inherited from All Paths. If it were inherited through a Glob Path, the Rule Source would be Related Glob Path (/admin/login.*).

LOGO

Example Query Variable Name and Variable Value

LOGO

Arayüz

Add Common Rule for Query Screen

LOGO

Add Common Rule for Query Form

- Virtual Host Group

The information about which Virtual Host Group the modified path belongs to is displayed.

- Path

The information of the path where changes are made is displayed.

- Area

DThe information of the control field where changes are made is displayed.

- Argument Name

It is displayed that the changes will be valid for all Query variables and values.

- Query Key Length

The length of each Query variable in characters is filtered.

- Query Key Count

It is filtered according to the total number of variables that can be passed in the Query.

- Query Size

It is filtered according to the total number of characters in the Query.

- Query Allowed Args

Permitted Query variables are used to determine the variables that can be sent to the relevant path. If entered permitted variables, no request can be made to the relevant path with any variable other than these variables, and it will be blocked.

- Query Must Arguments

Query Must Arguments are used to define variables that must be present in the request to the relevant path. If there is no mandatory Query variable in the request, the request cannot be made and will be blocked.

LOGO

The permitted and mandatory variables shown in the figure can be explained as follows: Let's assume that it is a user login page. Permitted username, password, and rememberMe variables are defined. In addition, username and password variables are defined as mandatory. In this case, the user making the request must enter the username and password. However, the rememberMe variable has been left optional. If desired, the user can come with the rememberMe variable, and if not, the request can be made without this variable. All variables not defined as permitted will be blocked. In addition, all requests without mandatory variables defined will be blocked.

- Value Length

The value length of each Query variable is filtered according to the number of characters.

- OWASP Check

Selection is made whether each variable and value of the Query should be subjected to OWASP check.

- OWASP Exclusions

After OWASP protection is activated, OWASP Rules that are desired to be excluded can be added as exceptions according to the structure of the incoming request.

- Detailed Log

It determines whether the variable or value for which an attack detection is made in the WAF log will be written in the description section.

- Value Regex Pattern

It is used in cases where it is desired to limit the value of the variable with RegEx.

- Max. Repeat

It determines how many times the same Query variable name can be repeated at most.

- Add

By clicking the Add button, the Query general setting is added.

- Display in TR7 ASP Interface After Adding Check Field

After adding the Query check field, the display in the TR7 ASP interface is as follows when clicked on the relevant path.

LOGO

Interface

Add Argument Rule for Query Screen

By clicking the Add Argument Rule for Query button, new definitions can be added specifically to a Query variable, apart from the general setting.

LOGO

Add Argument Rule for Query Form

- Virtual Host Group

The information about which Virtual Host Group the modified path belongs to is displayed.

- Path

The information of the path where changes are made is displayed.

- Area

The information of the control field where changes are made is displayed.

- Argument Name

The name of the relevant Query is entered, as the changes will be defined specifically for a single Query.

- Value Length

The length of the specified Query variable is filtered according to the number of characters.

- OWASP Check

Selection is made whether the variable and value of the specified Query should be subjected to OWASP check.

- OWASP Exclusions

After OWASP protection is activated, OWASP Rules that are desired to be excluded can be added as exceptions according to the structure of the incoming request.

- Detailed Log

It determines whether the variable or value for which an attack detection is made in the WAF log will be written in the description section.

- Value Regex Pattern

It is used in cases where it is desired to limit the value of the variable with RegEx.

- Max. Repeat

It determines how many times the same Query variable name can be repeated at most.

- Add

By clicking the Add button, the Query variable setting is added.

- Display in TR7 ASP Interface After Adding Query Variable Setting

After adding the Query variable setting, the display in the TR7 ASP interface is as follows when clicked on the relevant path.

LOGO