add threat-prevention exception
Description
Adds a new exception rule for Threat Prevention malware protection.
Syntax
|
|
Parameters
|
Parameter |
Description |
|---|---|
|
action |
The action taken when there is a match on the rule Options: ask, prevent, detect, inactive |
|
blade |
The blade to which the exception applies: Anti-Virus, Anti-Bot or both Options: any, any-av, any-ab, any-ips |
|
comment |
Additional description for the exception A string that contains less than 257 characters, of this set:
|
|
destination |
Network object that is the target of the connection |
|
destination-negate |
If true, the destination is all traffic except what is defined in the destination field |
|
log |
The logging method used when there is a match on the rule:
|
|
protection-code |
Indicates if the exception rule will be matched a specific IPS protection |
|
protection-name |
Indicates if the exception rule will be matched a specific IPS protection |
|
service |
Type of network service that is under exception |
|
service-negate |
If true, the service is everything except what is defined in the service field |
|
source |
IP address, network object or user group that the exception applies to |
|
source negate |
If true, the source is all traffic except what is defined in the source field |
Example
|
|
