fw sam_policy batch
Description
The "fw sam_policy batch" and "fw6 sam_policy batch" commands:
-
Add and delete many Suspicious Activity Monitoring (SAM) rules at a time.
-
Add and delete many Rate Limiting rules at a time.
|
Notes:
|
|
Important:
|
|
Best Practice - The SAM Policy rules consume some CPU resources on Security Gateway. Set an expiration for rules that gives you time to investigate, but does not affect performance. Keep only the required SAM Policy rules. If you confirm that an activity is risky, edit the Security Policy, educate users, or otherwise handle the risk. |
Procedure
-
Start the batch mode
-
For IPv4, run:
fw sam_policy batch << EOF
-
For IPv6, run:
fw6 sam_policy batch << EOF
-
-
Enter the applicable commands
-
Enter one "
add
" or "del
" command on each line, on as many lines as necessary.Start each line with only "
add
" or "del
" parameter (not with "fw samp
"). -
Use the same set of parameters and values as described in these commands:
-
fw sam_policy add
-
fw sam_policy del
-
-
Terminate each line with a Return (ASCII 10 - Line Feed) character (press Enter).
-
-
End the batch mode
Type
EOF
and press Enter.
Example of a Rate Limiting rule for IPv4