set threat-prevention exception
Description
Configures an existing exception rule for the Threat Prevention malware exceptions.
Syntax
|
set threat-prevention exception <position> [ destination <destination> ] [ destination-negate <destination-negate> ] [ service <service> ] [ service-negate <service-negate> ] [ source <source> ] [ source-negate <source-negate> ] [ { protection-name <protection-name> | [ protection-code <protection-code> ] | [ blade <blade> ] } ] [ action <action> ] [ log <log> ] [ comment <comment> ] |
Parameters
|
Parameter |
Description |
|---|---|
|
action |
The action taken when there is a match on the rule Options: ask, prevent, detect, inactive |
|
blade |
The blade to which the exception applies: Anti-Virus, Anti-Bot or both Options: any, any-av, any-ab, any-ips |
|
comment |
Additional description for the exception Type: A string that contains less than 257 characters, of this set: 0-9, a-z or , . -: () @ |
|
destination |
Network object that is the target of the connection |
|
destination-negate |
If true, the destination is all traffic except what is defined in the destination field Type: Boolean (true/false) |
|
log |
The logging method used when there is a match on the rule: None - do not log, Log - Create log, Alert - log with alert Options: none, log, alert |
|
position |
The order of the rule in comparison to other rules Type: Decimal number |
|
protection-code |
Indicates if the exception rule will be matched a specific IPS protection |
|
protection-name |
Indicates if the exception rule will be matched a specific IPS protection |
|
service |
Type of network service that is under exception |
|
service-negate |
If true, the service is everything except what is defined in the service field Type: Boolean (true/false) |
|
source |
IP address, network object or user group that the exception applies to |
|
source-negate |
If true, the source is all traffic except what is defined in the source field Type: Boolean (true/false) |
Example
|
set threat-prevention exception 2 destination TEXT destination-negate true service TEXT service-negate true source TEXT source-negate true protection-name word action ask log none comment This is a comment. |