Section – Default Deny Rule Groups

Default deny rules are labeled with a (default) name prefix and are managed by Airlock Gateway updates. The user cannot change them.

The following partly screenshot shows some of the currently available default deny rule groups:

Deny Rules_part1

You can expand groups to see the grouped rules and to display on which Security Level the individual rules are active. The security level can be set to Basic, Standard or Strict under Blocking levels.

Deny rules can be switched into log-only mode on mapping detail pages on Tab – Deny Rules. You can use the Log Only checkbox on a deny rule group header to quickly enable/disable the log-only mode for all rules in the group. In log-only mode, requests violating the rule are not blocked. The corresponding block log entry is created, but the request is still passed to the back-end server.