Applying an Action to a Protection Rule
Use the Web Application Firewall Edge policies to apply an action to a protection rule.
Using the Console
- Open the navigation menu and click Identity & Security. Under Web Application Firewall, click Policies.
- On the Policies page, select the compartment that contains the policy.
- (Optional) Filter the listed policies by name, state (status), policy type (Edge policy), or creation date.
- Click the name of the Edge policy that you want to configure rule settings for.
- On the policy details page, under Edge policy, click Protection rules.
- Click the Rules tab, and then find the protection rule you that want to apply an action to.Tip
You can use the Rule ID to find a protection rule. - Click the
- Detect: Matching requests generate an alert and the request is proxied.
- Block: Matching requests are blocked.
- Off: The rule is disabled.
- Exclusions: Exclusions are set to specify the types of requests that are bypassed by the protection rule. If a request matches any of the set exclusions, the protection rule doesn't run for that request.
- In the Exclusions dialog box, enter the following criteria:
- Exclusion: Select request cookie values, request cookie names, request parameters, or request parameter names.
- Value: Enter the value for the selected exclusion.
- Click Save changes.
- In the Exclusions dialog box, enter the following criteria:
for the rule and select one of the following options:
The protection rule action is added to the list to be published. For more information, see WAF Protection Rules.