Skip to content

Add Path

About

To view and manage path-based rules, click on the editing icon to the left of the Page Type text in the WAF management screen of the respective vService. If Virtual Host Groups are used, select the Virtual Host for which you want to manage the rules since each Virtual Host has its own rules. By clicking the Add button on the opened screen, you can manually add path-based rules to the relevant service.

LOGO

LOGO

Interface

Full Path Adding Screen

LOGO

Full Path Adding Form

- Virtual Host Group

Displays information about the Virtual Host Group where the new path is added.

- Path

Enter the path information for the rule you want to create.

- Allowed Methods

Select the HTTP methods that can be used for the new path.

LOGO

Any Methods > Allows all HTTP methods.

Multiple Methods > Allows selected HTTP methods.

None > Doesn't allow any HTTP method.

- OWASP

Select whether the path should be subjected to OWASP controls.

LOGO

- OWASP Exclusions

After enabling OWASP protection, you can select exceptions from the list of OWASP signatures.

- Add

Click the Add button to add a new path rule.

- Example of Adding a Path and Its Display

When a new path is added, the appearance on the WAF Management screen of the respective vService is as shown below.

LOGO

LOGO

Requests made to this added path are subjected to TR7 WAF rules based on the settings in the path's control area. If no settings are made in any control area, it first checks in the relevant Glob Paths. Then it follows the rules of the Default Rules (All Paths).

LOGO

Interface

Glob Path Adding Screen

LOGO

Glob Path Adding Form

- Virtual Host Group

Displays information about the Virtual Host Group where the new path is added.

- Path

Enter the path information for the rule you want to create. You can use glob patterns for the path. For details on using glob patterns, refer to https://en.m.wikipedia.org/wiki/Glob_(programming). When TR7 WAF detects a path as a glob, you can perform checks via the Glob Tester.

- Allowed Methods

Select the HTTP methods that can be used for the new path.

LOGO

Any Methods > Allows all HTTP methods.

Multiple Methods > Allows selected HTTP methods.

None > Doesn't allow any HTTP method.

- Path Size

The total path size is filtered based on the character count and operator selection.

By selecting No Restrictions, no filtering is done.

By selecting the Less Than or Equal to operator, it is activated if the given value is less than or equal to.

The equals operator is selected and is activated if the given value is equal.

By selecting the Greater Than or Equal to operator, it is activated if the given value is greater than or equal to.

By selecting the Range operator, it is activated if the given value is within the relevant range.

- Path Depth

Path depth is filtered based on the given value and operator selection.

By selecting No Restrictions, no filtering is done.

By selecting the Less Than or Equal to operator, it is activated if the given value is less than or equal to.

The equals operator is selected and is activated if the given value is equal.

By selecting the Greater Than or Equal to operator, it is activated if the given value is greater than or equal to.

By selecting the Range operator, it is activated if the given value is within the relevant range.

- OWASP

Select whether the path should be subjected to OWASP controls.

LOGO

- OWASP Exclusions

After enabling OWASP protection, you can select exceptions from the list of OWASP signatures.

- Add

Click the Add button to add a new path rule.

- Example of Adding a Path and Its Display

When a new path is added, the appearance on the WAF Management screen of the respective vService is as shown below.

LOGO

LOGO

Requests made to this added path are subjected to TR7 WAF rules based on the settings in the path's control area. If no settings are made in any control area, it first checks in the relevant Glob Paths. Then it follows the rules of the Default Rules (All Paths).

LOGO