Toggle navigationAirlock Secure Access HubAbout this documentAbout Airlock Gateway Release notesGetting startedGeneral warnings and recommendationsBasic conceptsREST API based configuration and administrationConfiguration Center (GUI)Button – ActivateMenu – DashboardMenu – System SetupMenu – Application FirewallSubmenu – Reverse ProxyColumn - Virtual HostVirtual Host detail pageTab – BasicTab – SSLTab – Client CertificatesTab – AdvancedTab – Expert SettingsColumn - MappingButton – Bulk OperationsButton – Add new MappingSelection – Mapping templatesMapping detail pageTab - BasicSection – Service and ModeSection – ApplicationSection – TimeoutSection – MiscellaneousSection – Anomaly ShieldTab – AccessSection – Authorization and authenticationExample – Restricted to rolesExample – Restricted to plansSection – Credential PropagationSection – Access TokensTab – IP RulesTab – Bot ManagementTab – Request ActionsTab – Response ActionsSection – HTTP Headers (Response Actions)Section – Rewrite Response Redirect LocationSection – Rewrite Response Body (JSON only)Section – Rewrite Response Body (any content)Section – Rewrite Response Body (HTML only)Section – Error page replacementTab – URL EncryptionSection – URL encryptionSection – Form ProtectionTab – CSRF TokensTab – LimitsSection – General Request LimitsSection – HTTP Parameter LimitsSection – JSON LimitsSection – GraphQL LimitsTab – Allow RulesTab – Deny RulesTab – ICAPTab – API SecuritySection – Basic Call VerificationSection – OpenAPISection – GraphQLSection – API PolicyTab – AdvancedSection – Content ParsingSection – DoS Attack PreventionSection – Overload PreventionSection – Request Body StreamingSection – HTTP Parameter Pollution Detection - Mixed TypesSection – HTTP Parameter Pollution Detection - Same TypeTab – Expert SettingsColumn – Back-end GroupBack-end Group detail pageTab – BasicTab – SSLTab – Health ChecksSection – In-band ChecksSection – Out-of-band ChecksTab – Expert SettingsSubmenu – Policy LearningSubmenu – Anomaly ShieldApplication detail pageAnomaly Shield model management pageTrigger and Pattern detail pageRule detail pageTraffic Matchers detail pageSubmenu – Geolocation FilterSubmenu – CertificatesTab – Server Certificates (virtual hosts)Add or configure a new global SSL/TLS server certificateTab – ACME Services (virtual hosts)Add or configure a new ACME ServiceTab – Client Certificates (back-end)Add or configure a new global SSL/TLS client certificateSubmenu – JWKS ProvidersSubmenu – SessionSection – Redis Session StoreSection – Session TrackingSection – Cookies and (CSRF) TokensSection – Application CookiesSection – Session Denial-of-Service MitigationSection – Access ControlSubmenu – Default ActionsAction TypesDefault and custom actionsHandling of special headersSubmenu – Deny RulesSection – Default Deny Rule GroupsSection – Custom Deny Rule GroupsCustom Deny Rules detail pageSubmenu – API SecuritySection OpenAPI SpecificationSection – GraphQL SchemaSubmenu – Dynamic IP BlacklistSubmenu – Error PagesMenu – Log & ReportMenu – ConfigurationMenu – Expert SettingsConfiguration examples and guidesIntegration of 3rd-party products and applicationsOperation tasksReference documentationExpert settings collectionTroubleshooting and supportConfiguration Center (GUI)Menu – Application FirewallMenu – Application FirewallThe Application Firewall menu is the main menu for traffic and mapping-related configuration and settings.Chapter contentSubmenu – Reverse ProxySubmenu – Policy LearningSubmenu – Anomaly ShieldSubmenu – Geolocation FilterSubmenu – CertificatesSubmenu – JWKS ProvidersSubmenu – SessionSubmenu – Default ActionsSubmenu – Deny RulesSubmenu – API SecuritySubmenu – Dynamic IP BlacklistSubmenu – Error Pages
The Application Firewall menu is the main menu for traffic and mapping-related configuration and settings.
Chapter contentSubmenu – Reverse ProxySubmenu – Policy LearningSubmenu – Anomaly ShieldSubmenu – Geolocation FilterSubmenu – CertificatesSubmenu – JWKS ProvidersSubmenu – SessionSubmenu – Default ActionsSubmenu – Deny RulesSubmenu – API SecuritySubmenu – Dynamic IP BlacklistSubmenu – Error Pages