Deny rules establish a negative security model, also known as black lists. Deny rules are processed as the first filtering stage after decoding and decryption.
Airlock Gateway provides a set of default deny rule groups to protect against common attack scenarios. For instance, there are specific deny rule groups dealing with SQL injection or Cross-site scripting (XSS) attacks. These default deny rule groups are identified by the "(default)" name prefix and have a configurable security level, one for blocking and one for additional logging. In order to see all rules belonging to a group, click on the group name or the expand icon on the right side of the group row to expand the view.