Traffic Matchers detail page

Traffic Matchers are configured as sets of regex filters and IP Lists that can be applied to incoming traffic.

Traffic Matchers are resources for the Anomaly Shield Applications detail page and can be referenced under:

Training Data Collection to stop unwanted traffic from polluting training data, e.g., to exclude vulnerability scanning sessions from being collected as training data by Airlock Anomaly Shield.
Anomaly Detection Exclusions to exclude known traffic from analysis, e.g., internal network monitoring.
Response Rule Exceptions to bypass Anomaly Shield actions on known traffic. e.g. to allow a vulnerability scan to test an application without disabling the Anomaly Shield on all other traffic.

Section – Traffic Matcher

Name – assign a unique name for the entry.
Tenant – add tenants to allow tenancy access. See also Multitenancy feature.

Section – Matching Conditions

Notice

Incoming traffic must meet all conditions to match the Traffic Matcher, empty conditions are ignored. If an IP list is configured in the matcher, at least one IP list entry must match along with all other configured conditions in order to generate a traffic match.

Available conditions:

Header Name – a regex to match certain header names. Example syntax: ^X-Header$
Header Value – a regex to match certain header values. Example syntax: ^X-Value$
Path – a regex to match certain paths. Example syntax: ^/path/to/match
HTTP Method –a regex to match certain HTTP methods. Example syntax: ^(GET|POST)$
Content Type – a regex to match a certain type of content. Example syntax: ^application/.*
IP Lists – Use the + button to select one or more IP addresses that should be matched.
Info
IP Lists are managed here: Submenu – IP Address Lists

Further information and links

Tab – Traffic Matcher as the entry point to this detail page.
Traffic Matchers are referenced on the Application detail page.