ddos exec-script¶

Execute scripts

exec-script Specification¶

Type

operational

Element Name

exec-script

Element URI

/axapi/v3/ddos/exec-script

Element Attributes

exec-script_attributes

Statistics Data URI

/axapi/v3/ddos/exec-script/stats

Schema

exec-script schema

Operations Allowed:

Operation	Method	URI	Payload
EXECUTE Object	POST	/axapi/v3/ddos/exec-script	exec-script attributes

exec-script attributes¶

alert-type

Description 1: UDP Pkt Rate 2: TCP Pkt Rate 3: ICMP Pkt Rate

Type: number

Range: 1-3

exec-script-ip-portocol

Description ‘icmp-v4’: ip-proto icmp-v4; ‘icmp-v6’: ip-proto icmp-v6; ‘other’: ip-proto other; ‘gre’: ip-proto gre; ‘ipv4-encap’: ip-proto IPv4 Encapsulation; ‘ipv6-encap’: ip-proto IPv6 Encapsulation;

Type: string

Supported Values: icmp-v4, icmp-v6, other, gre, ipv4-encap, ipv6-encap

exec-script-port-other-protocol

Description ‘tcp’: TCP Port; ‘udp’: UDP Port;

Type: string

Supported Values: tcp, udp

level

Description Current Level

Type: number

Range: 1-4

mock

Description Use mock data

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

port-num

Description Port Number

Type: number

Range: 1-65535

port-other

Description ‘other’: other;

Type: string

Supported Values: other

protocol

Description ‘dns-tcp’: DNS-TCP Port; ‘dns-udp’: DNS-UDP Port; ‘http’: HTTP Port; ‘tcp’: TCP Port; ‘udp’: UDP Port; ‘ssl-l4’: SSL-L4 Port; ‘sip-tcp’: SIP-TCP Port; ‘sip-udp’: SIP-UDP Port; ‘quic’: QUIC Port;

Type: string

Supported Values: dns-tcp, dns-udp, http, tcp, udp, ssl-l4, sip-tcp, sip-udp, quic

protocol-num

Description Protocol Number

Type: number

Range: 0-255

script

Description Specify script to execute

Type: string

Maximum Length: 63 characters

Maximum Length: 1 characters

src-ip

Type: List

src-ipv6

Type: List

threshold

Description Threshold

Type: number

Range: 1-3000

timeout

Description Timeout (Default: 10 seconds, Mock Default: 2 seconds)

Type: number

Range: 1-31

zone

Description DST Zone name

Type: string

Format: string-rlx

Maximum Length: 63 characters

Maximum Length: 1 characters

src-ip¶

Specification

Type

list

Block object keys

ip-addr

Description Specify IP address

Type: string

Format: ipv4-address

subnet-ip-addr

Description IP Subnet

Type: string

Format: ipv4-cidr

src-ipv6¶

Specification

Type

list

Block object keys

ip6-addr

Description Specify IPv6 address

Type: string

Format: ipv6-address

subnet-ipv6-addr

Description IPV6 Subnet

Type: string

Format: ipv6-address-plen

stats tcp-zone-port¶

Counter	Size	Description

src_ack_auth_fail	8	Src ACK Retry Dropped
src_well_known_port	8	Src TCP SrcPort Wellknown
tcp_rexmit_syn_limit_drop	8	TCP SYN Retransmit Exceeded Drop
secondary_port_kbit_rate_exceed_pkt	8	Per Addr-Port KiBit Rate Exceeded Count
outbound_port_bytes_sent	8	Outbound Bytes Forwarded
auth_drop	8	TCP Auth Dropped
filter_total_not_match	8	Filter Not Matched on Pkt
src_ack_retry_gap_drop	8	Src ACK Retry Retry-Gap Dropped
filter4_match	8	Filter4 Match
src_create_conn_non_syn_dropped	8	Src Create Conn with non-SYN Packets Dropped
prog_first_req_time_exceed	8	Req-Resp: First Request Time Exceed
sess_aged	8	Sessions Aged Out
pattern_filter4_match	8	Extracted Filter4 Match
pattern_filter1_match	8	Extracted Filter1 Match
conn_close	8	Connections Closed
syn_auth_fail	8	SYN Auth Failed
pattern_filter2_match	8	Extracted Filter2 Match
syn_retry_init	8	SYN Retry Init
secondary_port_kbit_rate_exceed	8	Per Addr-Port KiBit Rate Exceeded
pattern_filter5_match	8	Extracted Filter5 Match
secondary_port_hit	8	Per Addr-Port Hit
wellknown_sport_drop	8	TCP SrcPort Wellknown
prog_conn_time_exceed	8	Connection: Time Exceed
src_filter_total_not_match	8	Src Filter Not Matched on Pkt
port_syn_rate_exceed	8	TCP SYN Rate Exceeded
conn_rexmit_rate_excd	8	TCP Conn Retransmit Rate Exceeded
outbound_port_bytes	8	Outbound Bytes Received
prog_resp_req_ratio_exceed	8	Req-Resp: Response to Request Ratio Exceed
out_of_seq_excd	8	Out-Of-Seq Exceeded
conn_close_w_rst	8	RST Connections Closed
port_src_escalation	8	Src Escalation
dst_hw_drop	8	Dst Hardware Packets Dropped
filter_action_default_pass	8	Filter Action Default Pass
src_ack_retry_rto_progress	8	Src ACK Retry RTO Progress
src_filter_action_blacklist	8	Src Filter Action Blacklist
src_retransmit_excd	8	Src Retransmit Exceeded
pattern_filter3_match	8	Extracted Filter3 Match
tcp_rexmit_syn_limit_bl	8	TCP SYN Retransmit Exceeded Blacklist
prog_win_rcvd_sent_ratio_exceed	8	Time Window: Received to Sent Exceed
src_ack_retry_timeout	8	Src ACK Retry Timeout
dst_hw_drop_removed	8	Dst Hardware Drop Rules Removed
src_zone_service_entry_aged	8	SrcZoneService Entry Aged
src_filter5_match	8	Src Filter5 Match
outbound_port_drop	8	Outbound Packets Dropped
sflow_external_packets_sent	8	Sflow External Packets Sent
filter5_match	8	Filter5 Match
prog_conn_rcvd_exceed	8	Connection: Received Exceed
secondary_port_conn_rate_exceed	8	Per Addr-Port Conn Rate Exceeded
prog_conn_exceed_drop	8	Connection: Violation Exceed Dropped
port_bytes	8	Inbound Bytes Received
no_policy_class_list_match	8	No Policy Class-list Match
src_filter_action_default_pass	8	Src Filter Action Default Pass
syn_cookie_fail	8	SYN Cookie Failed
prog_request_len_exceed	8	Req-Resp: Request Length Exceed
src_syn_retry_rto_fail	8	Src SYN Retry RTO Dropped
syn_retry_rto_progress	8	SYN Retry RTO Progress
src_conn_rexmit_rate_excd	8	Src TCP Conn Retransmit Rate Exceeded
prog_win_exceed_bl	8	Time Window: Violation Exceed Blacklisted
src_out_of_seq_excd	8	Src Out-Of-Seq Exceeded
rst_cookie_fail	8	RST Cookie Failed
ack_retry_rto_fail	8	ACK Retry RTO Dropped
sflow_internal_packets_sent	8	Sflow Internal Packets Sent
snat_fail	8	Source NAT Failure
frag_rcvd	8	Fragmented Packets Received
src_syn_retry_init	8	Src SYN Retry Init
outbound_port_bytes_drop	8	Outbound Bytes Dropped
syn_retry_rto_pass	8	SYN Retry RTO Passed
exceed_action_tunnel	8	Exceed Action: Tunnel
bl	8	Dst Blacklisted
filter1_match	8	Filter1 Match
auth_resp	8	TCP Auth Responded
sess_create_inbound	8	Inbound Sessions Created
filter_auth_fail	8	Filter Auth Failed
conn_create_from_syn	8	Connections Created From SYN
exceed_drop_brate_src_pkt	8	Src KiBit Rate Exceeded Count
secondary_port_conn_limm_exceed	8	Per Addr-Port Conn Limit Exceeded
prog_conn_sent_exceed	8	Connection: Sent Exceed
prog_exceed_drop	8	Req-Resp: Violation Exceed Dropped
src_hw_drop_removed	8	Src Hardware Drop Rules Removed
src_zero_window_excd	8	Src Zero-Window Exceeded
ack_auth_fail	8	ACK Retry Dropped
sflow_external_samples_packed	8	Sflow External Samples Packed
src_drop	8	Src Packets Dropped
syn_retry_blacklist	8	SYN Retry Timeout Blacklisted
synack_reset_sent	8	SYNACK Reset Sent
pattern_recognition_pattern_changed	8	Pattern Recognition: Pattern Change Detected
src_conn_ofo_rate_excd	8	Src TCP Conn Out-Of-Seq Rate Exceeded
syn_retry_gap_drop	8	SYN Retry-Gap Dropped
prog_resp_req_time_exceed	8	Req-Resp: Response to Request Time Exceed
conn_create_from_ack	8	Connections Created From ACK
filter_none_match	8	Filter No Match
src_filter3_match	8	Src Filter3 Match
src_syn_retry_gap_drop	8	Src SYN Retry-Gap Dropped
prog_exceed_bl	8	Req-Resp: Violation Exceed Blacklisted
src_zone_service_entry_learned	8	SrcZoneService Entry Learned
syn_drop	8	SYN Dropped
src_filter1_match	8	Src Filter1 Match
src_syn_rate_exceed	8	Src TCP SYN Rate Exceeded
port_conn_rate_exceed	8	Conn Rate Exceeded
prog_win_rcvd_exceed	8	Time Window: Received Exceed
src_syn_retry_timeout	8	Src SYN Retry Timeout
prog_conn_exceed_bl	8	Connection: Violation Exceed Blacklisted
src_filter_none_match	8	Src Filter No Match
port_kbit_rate_exceed_pkt	8	KiBit Rate Exceeded Count
dst_hw_drop_inserted	8	Dst Hardware Drop Rules Inserted
unauth_drop	8	TCP Unauth Dropped
src_syn_cookie_sent	8	Src SYN Cookie Sent
port_bytes_sent	8	Inbound Bytes Forwarded
exceed_drop_brate_src	8	Src KiBit Rate Exceeded
ack_retry_timeout	8	ACK Retry Timeout
src_frag_drop	8	Src Fragmented Packets Dropped
syn_retry_timeout	8	SYN Retry Timeout
syn_tfo_rcv	8	SYN TFO Received
port_kbit_rate_exceed	8	KiBit Rate Exceeded
src_unauth_drop	8	Src TCP Unauth Dropped
filter_action_whitelist	8	Filter Action WL
src_conn_pkt_rate_excd	8	Src TCP Conn Pkt Rate Exceeded
port_src_bl	8	Src Blacklisted
frag_timeout	8	Fragmented Packets Timeout
outbound_port_pkt_sent	8	Outbound Packets Forwarded
sess_create_outbound	8	Outbound Sessions Created
pattern_filter_drop	8	Extracted Filter Drop
conn_close_w_fin	8	FIN Connections Closed
src_syn_retry_blacklist	8	Src SYN Retry Timeout Blacklisted
src_ack_retry_rto_pass	8	Src ACK Retry RTO Passed
src_conn_zwindow_rate_excd	8	Src TCP Conn Zero-Window Rate Exceeded
src_ack_retry_init	8	Src ACK Retry Init
ack_retry_blacklist	8	ACK Retry Timeout Blacklisted
filter_action_blacklist	8	Filter Action Blacklist
port_pkt_sent	8	Inbound Packets Forwarded
syn_auth_pass	8	SYN Auth Passed
syn_retry_rto_fail	8	SYN Retry RTO Dropped
prog_req_resp_time_exceed	8	Req-Resp: Request to Response Time Exceed
syn_cookie_sent	8	SYN Cookie Sent
retransmit_excd	8	Retransmit Exceeded
src_syn_auth_fail	8	Src SYN Auth Failed
src_filter_action_whitelist	8	Src Filter Action WL
zero_window_excd	8	Zero-Window Exceeded
src_ack_retry_reset	8	Src ACK Retry Timeout Reset
conn_ofo_rate_excd	8	TCP Conn Out-Of-Seq Rate Exceeded
filter2_match	8	Filter2 Match
src_ack_retry_blacklist	8	Src ACK Retry Timeout Blacklisted
frag_drop	8	Fragmented Packets Dropped
pattern_not_found	8	Pattern Recognition: Pattern Not Found
syn_retry_reset	8	SYN Retry Timeout Reset
prog_response_len_exceed	8	Req-Resp: Response Length Exceed
port_conn_limm_exceed	8	Conn Limit Exceeded
filter3_match	8	Filter3 Match
exceed_drop_climit_src	8	Src Conn Limit Exceeded
conn_close_w_idle	8	Idle Connections Closed
secondary_port_pkt_rate_exceed	8	Per Addr-Port Packet Rate Exceeded
src_filter2_match	8	Src Filter2 Match
sess_create	8	Session Create
port_bytes_drop	8	Inbound Bytes Dropped
exceed_drop_prate_src	8	Src Pkt Rate Exceeded
ack_retry_pass	8	ACK Retry Passed
pattern_recognition_generic_error	8	Pattern Recognition: Exceptions
ack_retry_reset	8	ACK Retry Timeout Reset
src_syn_cookie_fail	8	Src SYN Cookie Failed
syn_retry_failed	8	SYN Retry Dropped
pattern_recognition_sampling_started	8	Pattern Recognition: Sampling Started
ack_retry_init	8	ACK Retry Init
prog_conn_rcvd_sent_ratio_exceed	8	Connection: Reveived to Sent Ratio Exceed
src_filter4_match	8	Src Filter4 Match
sflow_internal_samples_packed	8	Sflow Internal Samples Packed
ack_retry_gap_drop	8	ACK Retry Retry-Gap Dropped
create_conn_non_syn_dropped	8	Create Conn with non-SYN Packets Dropped
syn_retry_pass	8	SYN Retry Passed
current_es_level	8	Current Escalation Level
src_syn_retry_failed	8	Src SYN Retry Dropped
filter_action_drop	8	Filter Action Drop
src_ack_retry_rto_fail	8	Src ACK Retry RTO Dropped
conn_zwindow_rate_excd	8	TCP Conn Zero-Window Rate Exceeded
ack_retry_rto_progress	8	ACK Retry RTO Progress
port_pkt_rate_exceed	8	Packet Rate Exceeded
prog_win_exceed_drop	8	Time Window: Violation Exceed Dropped
pattern_recognition_proceeded	8	Pattern Recognition: Engine Started
port_drop	8	Inbound Packets Dropped
ack_retry_rto_pass	8	ACK Retry RTO Passed
outbound_port_rcvd	8	Outbound Packets Received
src_filter_auth_fail	8	Src Filter Auth Failed
src_syn_retry_rto_pass	8	Src SYN Retry RTO Passed
src_syn_retry_reset	8	Src SYN Retry Timeout Reset
port_rcvd	8	Inbound Packets Received
conn_close_half_open	8	Half Open Connections Closed
src_hw_drop_inserted	8	Src Hardware Drop Rules Inserted
prog_win_sent_exceed	8	Time Window: Sent Exceed
synack_multiple_attempts_per_ip_detected	8	SYNACK Multiple Attempts Per IP Detected
src_syn_retry_rto_progress	8	Src SYN Retry RTO Progress
conn_prate_excd	8	TCP Conn Pkt Rate Exceeded
exceed_drop_crate_src	8	Src Conn Rate Exceeded
src_rst_cookie_fail	8	Src RST Cookie Failed
src_auth_drop	8	Src TCP Auth Dropped
src_filter_action_drop	8	Src Filter Action Drop

stats udp-zone-port¶

Counter	Size	Description

secondary_port_kbit_rate_exceed_pkt	8	Per Addr-Port KiBit Rate Exceeded Count
snat_fail	8	Source NAT Failure
pattern_filter5_match	8	Extracted Filter5 Match
token_authentication_prev_salt_matched	8	Token Authentication Previous Salt Matched
frag_drop	8	Fragmented Packets Dropped
outbound_port_bytes_sent	8	Outbound Bytes Forwarded
src_udp_retry_gap_drop	8	Src UDP Retry-Gap Dropped
filter4_match	8	Filter4 Match
spoof_detect_fail	8	UDP Retry Timeout
sess_aged	8	Sessions Aged Out
pattern_filter4_match	8	Extracted Filter4 Match
pattern_filter1_match	8	Extracted Filter1 Match
pattern_filter2_match	8	Extracted Filter2 Match
secondary_port_kbit_rate_exceed	8	Per Addr-Port KiBit Rate Exceeded
token_authentication_curr_salt_matched	8	Token Authentication Current Salt Matched
secondary_port_hit	8	Per Addr-Port Hit
wellknown_sport_drop	8	UDP SrcPort Wellknown
src_filter_total_not_match	8	Src Filter Not Matched on Pkt
src_udp_retry_init	8	Src UDP Retry Init
src_payload_too_small	8	Src UDP Payload Too Small
src_udp_retry_pass	8	Src UDP Retry Passed
udp_retry_init	8	UDP Retry Init
outbound_port_bytes	8	Outbound Bytes Received
src_filter5_match	8	Src Filter5 Match
port_src_escalation	8	Src Escalation
dst_hw_drop	8	Dst Hardware Packets Dropped
port_bytes	8	Inbound Bytes Received
frag_rcvd	8	Fragmented Packets Received
src_filter_action_blacklist	8	Src Filter Action Blacklist
pattern_filter3_match	8	Extracted Filter3 Match
dst_hw_drop_removed	8	Dst Hardware Drop Rules Removed
src_zone_service_entry_aged	8	SrcZoneService Entry Aged
outbound_port_drop	8	Outbound Packets Dropped
sflow_external_packets_sent	8	Sflow External Packets Sent
filter5_match	8	Filter5 Match
token_authentication_session_created	8	Token Authentication Session Created
no_policy_class_list_match	8	No Policy Class-list Match
src_filter_action_default_pass	8	Src Filter Action Default Pass
zone_src_udp_retry_timeout_blacklist	8	Src UDP Retry Timeout Blacklisted
filter_total_not_match	8	Filter Not Matched on Pkt
sflow_internal_packets_sent	8	Sflow Internal Packets Sent
payload_too_small	8	UDP Payload Too Small
src_payload_too_big	8	Src UDP Payload Too Large
outbound_port_bytes_drop	8	Outbound Bytes Dropped
exceed_action_tunnel	8	Exceed Action: Tunnel
bl	8	Dst Blacklisted
filter1_match	8	Filter1 Match
ntp_monlist_resp	8	NTP Monlist Response
sess_create_inbound	8	Inbound Sessions Created
filter_auth_fail	8	Filter Auth Failed
exceed_drop_brate_src_pkt	8	Src KiBit Rate Exceeded Count
src_filter1_match	8	Src Filter1 Match
udp_retry_pass	8	UDP Retry Passed
src_hw_drop_removed	8	Src Hardware Drop Rules Removed
dst_udp_retry_timeout_blacklist	8	UDP Retry Timeout Blacklisted
src_udp_auth_drop	8	Src UDP Auth Dropped
sflow_external_samples_packed	8	Sflow External Samples Packed
src_drop	8	Src Packets Dropped
pattern_recognition_pattern_changed	8	Pattern Recognition: Pattern Change Detected
port_drop	8	Inbound Packets Dropped
filter_none_match	8	Filter No Match
src_filter3_match	8	Src Filter3 Match
ntp_monlist_req	8	NTP Monlist Request
src_zone_service_entry_learned	8	SrcZoneService Entry Learned
payload_too_big	8	UDP Payload Too Large
token_authentication_session_created_fail	8	Token Authentication Session Created Fail
port_conn_rate_exceed	8	Conn Rate Exceeded
src_filter_none_match	8	Src Filter No Match
port_kbit_rate_exceed_pkt	8	KiBit Rate Exceeded Count
port_bytes_sent	8	Inbound Bytes Forwarded
exceed_drop_brate_src	8	Src KiBit Rate Exceeded
src_frag_drop	8	Src Fragmented Packets Dropped
port_kbit_rate_exceed	8	KiBit Rate Exceeded
udp_retry_gap_drop	8	UDP Retry-Gap Dropped
filter_action_whitelist	8	Filter Action Whitelist
src_conn_pkt_rate_excd	8	Src UDP Conn Pkt Rate Exceeded
port_src_bl	8	Src Blacklisted
outbound_port_rcvd	8	Outbound Packets Received
outbound_port_pkt_sent	8	Outbound Packets Forwarded
sess_create_outbound	8	Outbound Sessions Created
pattern_filter_drop	8	Extracted Filter Drop
pattern_recognition_proceeded	8	Pattern Recognition: Engine Started
src_well_known_port	8	Src UDP SrcPort Wellknown
filter_action_blacklist	8	Filter Action Blacklist
port_pkt_sent	8	Inbound Packets Forwarded
src_filter_action_whitelist	8	Src Filter Action Whitelist
secondary_port_conn_rate_exceed	8	Per Addr-Port Conn Rate Exceeded
dst_hw_drop_inserted	8	Dst Hardware Drop Rules Inserted
filter2_match	8	Filter2 Match
secondary_port_conn_limm_exceed	8	Per Addr-Port Conn Limit Exceeded
pattern_not_found	8	Pattern Recognition: Pattern Not Found
port_conn_limm_exceed	8	Conn Limit Exceeded
filter3_match	8	Filter3 Match
src_ntp_monlist_resp	8	Src NTP Monlist Response
secondary_port_pkt_rate_exceed	8	Per Addr-Port Packet Rate Exceeded
src_filter2_match	8	Src Filter2 Match
sess_create	8	Session Create
port_bytes_drop	8	Inbound Bytes Dropped
exceed_drop_prate_src	8	Src Pkt Rate Exceeded
exceed_drop_climit_src	8	Src Conn Limit Exceeded
udp_auth_drop	8	UDP Auth Dropped
pattern_recognition_generic_error	8	Pattern Recognition: Exceptions
src_ntp_monlist_req	8	Src NTP Monlist Request
token_authentication_mismatched	8	Token Authentication Mismatched Packets
pattern_recognition_sampling_started	8	Pattern Recognition: Sampling Started
src_filter4_match	8	Src Filter4 Match
sflow_internal_samples_packed	8	Sflow Internal Samples Packed
filter_action_default_pass	8	Filter Action Default Pass
current_es_level	8	Current Escalation Level
filter_action_drop	8	Filter Action Drop
token_authentication_invalid	8	Token Authentication Invalid Packets
port_pkt_rate_exceed	8	Packet Rate Exceeded
frag_timeout	8	Fragmented Packets Timeout
src_filter_auth_fail	8	Src Filter Auth Failed
port_rcvd	8	Inbound Packets Received
src_hw_drop_inserted	8	Src Hardware Drop Rules Inserted
conn_prate_excd	8	UDP Conn Pkt Rate Exceeded
exceed_drop_crate_src	8	Src Conn Rate Exceeded
src_filter_action_drop	8	Src Filter Action Drop
src_udp_auth_timeout	8	Src UDP Retry Timeout