Submenu – Deny Rules

Deny Rules

Deny rules establish a negative security model, also known as black lists. Deny rules are processed as the first filtering stage after decoding and decryption.

Airlock Gateway provides a set of default deny rule groups to protect against common attack scenarios. For instance, there are specific deny rule groups dealing with SQL injection or Cross-site scripting (XSS) attacks. These default deny rule groups are identified by the "(default)" name prefix and have a configurable security level, one for blocking and one for additional logging. In order to see all rules belonging to a group, click on the group name or the expand icon on the right side of the group row to expand the view.

Filtering JSON attributes

Airlock Gateway automatically generates parameters from JSON objects. These JSON parameters are treated like parameters in GET or POST requests. For details, refer to the JSON filtering page.