slb virtual-server port¶
Virtual Port
port Specification¶
Type Collection Object Key(s) port-number, protocol Collection Name port-list Collection URI /axapi/v3/slb/virtual-server/{name}/port Element Name port Element URI /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol} Element Attributes port_attributes Statistics Data URI /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol}/stats Operational Data URI /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol}/oper Schema port schemaOperations Allowed:
| Operation | Method | URI | Payload | |
|---|---|---|---|---|
Create Object | POST | /axapi/v3/slb/virtual-server/{name}/port | ||
Create List | POST | /axapi/v3/slb/virtual-server/{name}/port | ||
Get Object | GET | /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol} | ||
Get List | GET | /axapi/v3/slb/virtual-server/{name}/port | ||
Modify Object | POST | /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol} | ||
Replace Object | PUT | /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol} | ||
Replace List | PUT | /axapi/v3/slb/virtual-server/{name}/port | ||
Delete Object | DELETE | /axapi/v3/slb/virtual-server/{name}/port/{port-number}+{protocol} |
port-list¶
port-list is JSON List of port attributes
port-list : [
]
port attributes¶
acl-list
Type: Listaction
Description ‘enable’: Enable; ‘disable’: Disable;
Type: string
Supported Values: enable, disable
Default: enable
aflex-scripts
Type: Listaflex-table-entry-syn-disable
Description Disable aFlex entry sync for this port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: aflex-table-entry-syn-disable and aflex-table-entry-syn-enable are mutually exclusive
aflex-table-entry-syn-enable
Description Enable aFlex entry sync for this port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: aflex-table-entry-syn-enable and aflex-table-entry-syn-disable are mutually exclusive
alt-protocol1
Description ‘http’: HTTP Port;
Type: string
Supported Values: http
alt-protocol2
Description ‘tcp’: TCP LB service;
Type: string
Supported Values: tcp
alternate-port
Description Alternate Virtual Port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: alternate-port and range are mutually exclusive
alternate-port-number
Description Virtual Port
Type: number
Range: 0-65534
attack-detection
Description Enable analytics
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
auth-cfg
Description: auth-cfg is a JSON Block. Please see below for auth-cfg
Type: Object
auto
Description Configure auto NAT for the vport
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
clientip-sticky-nat
Description Prefer to use same source NAT address for a client
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
conn-limit
Description Connection Limit
Type: number
Range: 1-64000000
Default: 64000000
cpu-compute
Description enable cpu compute on virtual port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
def-selection-if-pref-failed
Description ‘def-selection-if-pref-failed’: Use default server selection method if prefer method failed; ‘def-selection-if-pref-failed-disable’: Stop using default server selection method if prefer method failed;
Type: string
Supported Values: def-selection-if-pref-failed, def-selection-if-pref-failed-disable
Default: def-selection-if-pref-failed
enable-playerid-check
Description Enable playerid checks on UDP packets once the AX is in active mode
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
enable-scaleout
Description
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
eth-fwd
Description Ethernet interface number
Type: number
Format: interface
Mutual Exclusion: eth-fwd and trunk-fwd are mutually exclusive
eth-rev
Description Ethernet interface number
Type: number
Format: interface
Mutual Exclusion: eth-rev and trunk-rev are mutually exclusive
expand
Description expand syn-cookie with timestamp and wscale
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
extended-stats
Description Enable extended statistics on virtual port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
force-routing-mode
Description Force routing mode
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
gslb-enable
Description Enable Global Server Load Balancing
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
gtp-session-lb
Description Enable GTP Session Load Balancing
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
ha-conn-mirror
Description Enable for HA Conn sync
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
ignore-global
Description Ignore global substitute-source-mac
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
ip-map-list
Description Enter name of IP Map List to be bound (IP Map List Name)
Type: string
Maximum Length: 128 characters
Maximum Length: 1 characters
ip-only-lb
Description Enable IP-Only LB mode
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
ip-smart-rr
Description Use IP address round-robin behavior
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
ipinip
Description Enable IP in IP
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
l7-hardware-assist
Description FPGA assist L7 packet parsing
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
l7-service-chain
Description
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
memory-compute
Description enable dynamic memory compute on virtual port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
message-switching
Description Message switching
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
name
Description SLB Virtual Service Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
no-auto-up-on-aflex
Description Don’t automatically mark vport up when aFleX is bound
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
no-dest-nat
Description Disable destination NAT, this option only supports in wildcard VIP or when a connection is operated in SSLi + EP mode
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
no-logging
Description Do not log connection over limit event
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
on-syn
Description Enable for HA Conn sync for l4 tcp sessions on SYN
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
one-server-conn
Description Support server that allow only one connection
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
optimization-level
Description ‘0’: No optimization; ‘1’: Optimization level 1 (Experimental);
Type: string
Supported Values: 0, 1
Default: 0
p-template-sip-shared
Description SIP Template Name
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: p-template-sip-shared and template-sip are mutually exclusive
packet-capture-template
Description Name of the packet capture template to be bind with this object
Type: string
Maximum Length: 128 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/visibility/packet-capture/object-templates/slb-vport-tmpl
persist-type
Description ‘src-dst-ip-swap-persist’: Create persist session after source IP and destination IP swap; ‘use-src-ip-for-dst-persist’: Use the source IP to create a destination persist session; ‘use-dst-ip-for-src-persist’: Use the destination IP to create source IP persist session;
Type: string
Supported Values: src-dst-ip-swap-persist, use-src-ip-for-dst-persist, use-dst-ip-for-src-persist
pool
Description Specify NAT pool or pool group
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Mutual Exclusion: pool and shared-partition-pool are mutually exclusive
Reference Object: /axapi/v3/ip/nat/pool
pool-shared
Description Specify NAT pool or pool group
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/nat/pool
port-number
Description Port
Type: number
Range: 0-65534
port-translation
Description Enable port translation under no-dest-nat
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
precedence
Description Set auto NAT pool as higher precedence for source NAT
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
protocol
Description ‘tcp’: TCP LB service; ‘udp’: UDP Port; ‘others’: for no tcp/udp protocol, do IP load balancing; ‘diameter’: diameter port; ‘dns-tcp’: DNS service over TCP; ‘dns-udp’: DNS service over UDP; ‘fast-http’: Fast HTTP Port; ‘fix’: FIX Port; ‘ftp’: File Transfer Protocol Port; ‘ftp-proxy’: ftp proxy port; ‘http’: HTTP Port; ‘https’: HTTPS port; ‘imap’: imap proxy port; ‘mlb’: Message based load balancing; ‘mms’: Microsoft Multimedia Service Port; ‘mysql’: mssql port; ‘mssql’: mssql; ‘pop3’: pop3 proxy port; ‘radius’: RADIUS Port; ‘rtsp’: Real Time Streaming Protocol Port; ‘sip’: Session initiation protocol over UDP; ‘sip-tcp’: Session initiation protocol over TCP; ‘sips’: Session initiation protocol over TLS; ‘smpp-tcp’: SMPP service over TCP; ‘spdy’: spdy port; ‘spdys’: spdys port; ‘smtp’: SMTP Port; ‘mqtt’: MQTT Port; ‘mqtts’: MQTTS Port; ‘ssl-proxy’: Generic SSL proxy; ‘ssli’: SSL insight; ‘ssh’: SSH Port; ‘tcp-proxy’: Generic TCP proxy; ‘tftp’: TFTP Port; ‘fast-fix’: Fast FIX port;
Type: string
Supported Values: tcp, udp, others, diameter, dns-tcp, dns-udp, fast-http, fix, ftp, ftp-proxy, http, https, imap, mlb, mms, mysql, mssql, pop3, radius, rtsp, sip, sip-tcp, sips, smpp-tcp, spdy, spdys, smtp, mqtt, mqtts, ssl-proxy, ssli, ssh, tcp-proxy, tftp, fast-fix
proxy-layer
Description ‘v1’: Force using old proxy; ‘v2’: Force using new proxy;
Type: string
Supported Values: v1, v2
range
Description Virtual Port range (Virtual Port range value)
Type: number
Range: 0-254
Default: 0
Mutual Exclusion: range and alternate-port are mutually exclusive
rate
Description Specify the log message rate
Type: number
Range: 0-2147483647
redirect-to-https
Description Redirect HTTP to HTTPS
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
reply-acme-challenge
Description Reply ACME http-01 challenge. This option only takes effect in HTTP port 80
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
req-fail
Description Use alternate virtual port when L7 request fail
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
reselection
Description ‘disable’: disable;
Type: string
Supported Values: disable
reset
Description Send client reset when connection number over limit
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
reset-on-server-selection-fail
Description Send client reset when server selection fails
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
resolve-web-cat-list
Description Web Category List name
Type: string
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/web-category/category-list
rtp-sip-call-id-match
Description rtp traffic try to match the real server of sip smp call-id session
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
sampling-enable
Type: Listscaleout-bucket-count
Description Number of traffic buckets
Type: number
Range: 1-256
Default: 32
scaleout-device-group
Description Device group id
Type: number
Range: 1-16
secs
Description Specify the interval in seconds
Type: number
Range: 1-100
serv-sel-fail
Description Use alternate virtual port when server selection failure
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
server-group
Description Bind a use-rcv-hop-for-resp Server Group to this Virtual Server (Server Group Name)
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/server-group
service-group
Description Bind a Service Group to this Virtual Server (Service Group Name)
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/service-group
shared-partition-cache-template
Description Reference a Cache template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-cache-template and template-cache are mutually exclusive
shared-partition-client-ssl-template
Description Reference a Client SSL template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-client-ssl-template and template-client-ssl are mutually exclusive
shared-partition-connection-reuse-template
Description Reference a connection reuse template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-connection-reuse-template and template-connection-reuse are mutually exclusive
shared-partition-dblb-template
Description Reference a dblb template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-dblb-template and template-dblb are mutually exclusive
shared-partition-diameter-template
Description Reference a Diameter template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-diameter-template and template-diameter are mutually exclusive
shared-partition-dns-template
Description Reference a dns template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-dns-template and template-dns are mutually exclusive
shared-partition-doh-template
Description Reference a DNS over HTTP(s) template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-doh-template and template-doh are mutually exclusive
shared-partition-dynamic-service-template
Description Reference a dynamic service template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-dynamic-service-template and template-dynamic-service are mutually exclusive
shared-partition-external-service-template
Description Reference a external service template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-external-service-template and template-external-service are mutually exclusive
shared-partition-fix-template
Description Reference a FIX template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-fix-template and template-fix are mutually exclusive
shared-partition-http-policy-template
Description Reference a http policy template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-http-policy-template and template-http-policy are mutually exclusive
shared-partition-http-template
Description Reference a HTTP template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-http-template and template-http are mutually exclusive
shared-partition-imap-pop3-template
Description Reference a IMAP/POP3 template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-imap-pop3-template and template-imap-pop3 are mutually exclusive
shared-partition-persist-cookie-template
Description Reference a persist cookie template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-persist-cookie-template and template-persist-cookie are mutually exclusive
shared-partition-persist-destination-ip-template
Description Reference a persist destination ip template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-persist-destination-ip-template and template-persist-destination-ip are mutually exclusive
shared-partition-persist-source-ip-template
Description Reference a persist source ip template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-persist-source-ip-template and template-persist-source-ip are mutually exclusive
shared-partition-persist-ssl-sid-template
Description Reference a persist SSL SID template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-persist-ssl-sid-template and template-persist-ssl-sid are mutually exclusive
shared-partition-policy-template
Description Reference a policy template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-policy-template and template-policy are mutually exclusive
shared-partition-pool
Description Specify NAT pool or pool group from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-pool and pool are mutually exclusive
shared-partition-server-ssl-template
Description Reference a SSL Server template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-server-ssl-template and template-server-ssl are mutually exclusive
shared-partition-smpp-template
Description Reference a smpp template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-smpp-template and template-smpp are mutually exclusive
shared-partition-smtp-template
Description Reference a SMTP template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-smtp-template and template-smtp are mutually exclusive
shared-partition-tcp
Description Reference a tcp template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-tcp and template-tcp are mutually exclusive
shared-partition-tcp-proxy-template
Description Reference a TCP Proxy template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-tcp-proxy-template and template-tcp-proxy are mutually exclusive
shared-partition-udp
Description Reference a UDP template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-udp and template-udp are mutually exclusive
shared-partition-virtual-port-template
Description Reference a Virtual Port template from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-virtual-port-template and template-virtual-port are mutually exclusive
showtech-print-extended-stats
Description Enable print extended stats in showtech for dns vports
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
skip-rev-hash
Description Skip rev tuple hash insertion
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
snat-on-vip
Description Enable source NAT traffic against VIP
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
stats-data-action
Description ‘stats-data-enable’: Enable statistical data collection for virtual port; ‘stats-data-disable’: Disable statistical data collection for virtual port;
Type: string
Supported Values: stats-data-enable, stats-data-disable
Default: stats-data-enable
substitute-source-mac
Description Substitute Source MAC Address to that of the outgoing interface
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
support-http2
Description Support HTTP2
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
syn-cookie
Description Enable syn-cookie
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
template-cache
Description RAM caching template (Cache Template Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-cache and shared-partition-cache-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/cache
template-cache-shared
Description Cache Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/cache
template-client-ssh
Description Client SSH Template (Client SSH Config Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/client-ssh
template-client-ssl
Description Client SSL Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-client-ssl and shared-partition-client-ssl-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/client-ssl
template-client-ssl-shared
Description Client SSL Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/client-ssl
template-connection-reuse
Description Connection Reuse Template (Connection Reuse Template Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-connection-reuse and shared-partition-connection-reuse-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/connection-reuse
template-connection-reuse-shared
Description Connection Reuse Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/connection-reuse
template-dblb
Description DBLB Template (DBLB template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-dblb and shared-partition-dblb-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/dblb
template-dblb-shared
Description DBLB Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/dblb
template-diameter
Description Diameter Template (diameter template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-diameter and shared-partition-diameter-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/diameter
template-diameter-shared
Description Diameter Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/diameter
template-dns
Description DNS template (DNS template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-dns and shared-partition-dns-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/dns
template-dns-shared
Description DNS Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/dns
template-doh
Description DNS over HTTP(s) Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-doh and shared-partition-doh-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/doh
template-doh-shared
Description DNS over HTTP(s) Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/doh
template-dynamic-service
Description Dynamic Service Template (dynamic-service template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-dynamic-service and shared-partition-dynamic-service-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/dynamic-service
template-dynamic-service-shared
Description Dynamic Service Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/dynamic-service
template-external-service
Description External service template (external-service template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-external-service and shared-partition-external-service-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/external-service
template-external-service-shared
Description External Service Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/external-service
template-fix
Description FIX template (FIX Template Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-fix and shared-partition-fix-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/fix
template-fix-shared
Description FIX Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/fix
template-ftp
Description FTP port template (Ftp template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/ftp
template-http
Description HTTP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-http and shared-partition-http-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/http
template-http-policy
Description http-policy template (http-policy template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-http-policy and shared-partition-http-policy-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/http-policy
template-http-policy-shared
Description Http Policy Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/http-policy
template-http-shared
Description HTTP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/http
template-imap-pop3
Description IMAP/POP3 Template (IMAP/POP3 Config Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-imap-pop3 and shared-partition-imap-pop3-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/imap-pop3
template-imap-pop3-shared
Description IMAP/POP3 Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/imap-pop3
template-mqtt
Description MQTT Template (MQTT Config Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/mqtt
template-persist-cookie
Description Cookie persistence (Cookie persistence template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-persist-cookie and shared-partition-persist-cookie-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/persist/cookie
template-persist-cookie-shared
Description Cookie Persistence Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/persist/cookie
template-persist-destination-ip
Description Destination IP persistence (Destination IP persistence template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-persist-destination-ip and shared-partition-persist-destination-ip-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/persist/destination-ip
template-persist-destination-ip-shared
Description Destination IP Persistence Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/persist/destination-ip
template-persist-source-ip
Description Source IP persistence (Source IP persistence template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-persist-source-ip and shared-partition-persist-source-ip-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/persist/source-ip
template-persist-source-ip-shared
Description Source IP Persistence Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/persist/source-ip
template-persist-ssl-sid
Description SSL SID persistence (SSL SID persistence template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-persist-ssl-sid and shared-partition-persist-ssl-sid-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/persist/ssl-sid
template-persist-ssl-sid-shared
Description SSL SID Persistence Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/persist/ssl-sid
template-policy
Description Policy Template (Policy template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-policy and shared-partition-policy-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/policy
template-policy-shared
Description Policy Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/policy
template-ram-cache
Description RAM caching template (Cache Template Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/cache
template-reqmod-icap
Description ICAP reqmod template (reqmod-icap template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/reqmod-icap
template-respmod-icap
Description ICAP respmod service template (respmod-icap template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/respmod-icap
template-scaleout
Description Scaleout template (Scaleout template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
template-server-ssh
Description Server SSH Template (Server SSH Config Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/server-ssh
template-server-ssl
Description Server Side SSL Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-server-ssl and shared-partition-server-ssl-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/server-ssl
template-server-ssl-shared
Description Server SSL Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/server-ssl
template-sip
Description SIP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-sip and p-template-sip-shared are mutually exclusive
Reference Object: /axapi/v3/slb/template/sip
template-sip-shared
Description SIP template
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/sip
template-smpp
Description SMPP template
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-smpp and shared-partition-smpp-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/smpp
template-smpp-shared
Description SMPP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/smpp
template-smtp
Description SMTP Template (SMTP Config Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-smtp and shared-partition-smtp-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/smtp
template-smtp-shared
Description SMTP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/smtp
template-ssli
Description SSLi template (SSLi Template Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/ssli
template-tcp
Description TCP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Default: default
Mutual Exclusion: template-tcp and shared-partition-tcp are mutually exclusive
Reference Object: /axapi/v3/slb/template/tcp
template-tcp-proxy
Description TCP Proxy Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Mutual Exclusion: template-tcp-proxy and shared-partition-tcp-proxy-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/tcp-proxy
template-tcp-proxy-client
Description TCP Proxy Config Client (TCP Proxy Config name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/tcp-proxy
template-tcp-proxy-server
Description TCP Proxy Config Server (TCP Proxy Config name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/tcp-proxy
template-tcp-proxy-shared
Description TCP Proxy Template name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/tcp-proxy
template-tcp-shared
Description TCP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Default: default
Reference Object: /axapi/v3/slb/template/tcp
template-udp
Description L4 UDP Template
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Default: default
Mutual Exclusion: template-udp and shared-partition-udp are mutually exclusive
Reference Object: /axapi/v3/slb/template/udp
template-udp-shared
Description UDP Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Default: default
Reference Object: /axapi/v3/slb/template/udp
template-virtual-port
Description Virtual port template (Virtual port template name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Default: default
Mutual Exclusion: template-virtual-port and shared-partition-virtual-port-template are mutually exclusive
Reference Object: /axapi/v3/slb/template/virtual-port
template-virtual-port-shared
Description Virtual Port Template Name
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/slb/template/virtual-port
trunk-fwd
Description Trunk interface number
Type: number
Format: interface
Mutual Exclusion: trunk-fwd and eth-fwd are mutually exclusive
trunk-rev
Description Trunk interface number
Type: number
Format: interface
Mutual Exclusion: trunk-rev and eth-rev are mutually exclusive
use-alternate-port
Description Use alternate virtual port
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
use-cgnv6
Description Follow CGNv6 source NAT configuration
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
use-default-if-no-server
Description Use default forwarding if server selection failed
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
use-rcv-hop-for-resp
Description Use receive hop for response to client(For packets on default-vlan, also config “vlan-global enable-def-vlan-l2-forwarding”.)
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
use-rcv-hop-group
Description Set use-rcv-hop group
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
user-tag
Description Customized tag
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
view
Description Specify a GSLB View (ID)
Type: number
Range: 1-31
waf-template
Description WAF template (WAF Template Name)
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/waf/template
when-down
Description Use alternate virtual port when down
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
when-down-protocol2
Description Use alternate virtual port when down
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
sampling-enable¶
Specification Type list Block object keys counters1
Description ‘all’: all; ‘curr_conn’: Current established connections; ‘total_l4_conn’: Total L4 connections established; ‘total_l7_conn’: Total L7 connections established; ‘total_tcp_conn’: Total TCP connections established; ‘total_conn’: Total connections established; ‘total_fwd_bytes’: Bytes processed in forward direction; ‘total_fwd_pkts’: Packets processed in forward direction; ‘total_rev_bytes’: Bytes processed in reverse direction; ‘total_rev_pkts’: Packets processed in reverse direction; ‘total_dns_pkts’: Total DNS packets processed; ‘total_mf_dns_pkts’: Total MF DNS packets; ‘es_total_failure_actions’: Total failure actions; ‘compression_bytes_before’: Data into compression engine; ‘compression_bytes_after’: Data out of compression engine; ‘compression_hit’: Number of requests compressed; ‘compression_miss’: Number of requests NOT compressed; ‘compression_miss_no_client’: Compression miss no client; ‘compression_miss_template_exclusion’: Compression miss template exclusion; ‘curr_req’: Current requests; ‘total_req’: Total requests; ‘total_req_succ’: Total successful requests; ‘peak_conn’: Peak connections; ‘curr_conn_rate’: Current connection rate; ‘last_rsp_time’: Last response time; ‘fastest_rsp_time’: Fastest response time; ‘slowest_rsp_time’: Slowest response time; ‘loc_permit’: Geo-location Permit count; ‘loc_deny’: Geo-location Deny count; ‘loc_conn’: Geo-location Connection count; ‘curr_ssl_conn’: Current SSL connections; ‘total_ssl_conn’: Total SSL connections; ‘backend-time-to-first-byte’: Backend Time from Request to Response First Byte; ‘backend-time-to-last-byte’: Backend Time from Request to Response Last Byte; ‘in-latency’: Request Latency at Thunder; ‘out-latency’: Response Latency at Thunder; ‘total_fwd_bytes_out’: Bytes processed in forward direction (outbound); ‘total_fwd_pkts_out’: Packets processed in forward direction (outbound); ‘total_rev_bytes_out’: Bytes processed in reverse direction (outbound); ‘total_rev_pkts_out’: Packets processed in reverse direction (outbound); ‘curr_req_rate’: Current request rate; ‘curr_resp’: Current response; ‘total_resp’: Total response; ‘total_resp_succ’: Total successful responses; ‘curr_resp_rate’: Current response rate; ‘dnsrrl_total_allowed’: DNS Response-Rate-Limiting Total Responses Allowed; ‘dnsrrl_total_dropped’: DNS Response-Rate-Limiting Total Responses Dropped; ‘dnsrrl_total_slipped’: DNS Response-Rate-Limiting Total Responses Slipped; ‘dnsrrl_bad_fqdn’: DNS Response-Rate-Limiting Bad FQDN; ‘throughput-bits-per-sec’: Throughput in bits/sec; ‘dynamic-memory-alloc’: dynamic memory (bytes) allocated by the vport; ‘dynamic-memory-free’: dynamic memory (bytes) allocated by the vport; ‘dynamic-memory’: dynamic memory (bytes) used by the vport(alloc-free); ‘ip_only_lb_fwd_bytes’: IP-Only-LB Bytes processed in forward direction; ‘ip_only_lb_rev_bytes’: IP-Only-LB Bytes processed in reverse direction; ‘ip_only_lb_fwd_pkts’: IP-Only-LB Packets processed in forward direction; ‘ip_only_lb_rev_pkts’: IP-Only-LB Packets processed in reverse direction; ‘total_dns_filter_type_drop’: Total DNS Filter Type Drop; ‘total_dns_filter_class_drop’: Total DNS Filter Class Drop; ‘dns_filter_type_a_drop’: DNS Filter Type A Drop; ‘dns_filter_type_aaaa_drop’: DNS Filter Type AAAA Drop; ‘dns_filter_type_cname_drop’: DNS Filter Type CNAME Drop; ‘dns_filter_type_mx_drop’: DNS Filter Type MX Drop; ‘dns_filter_type_ns_drop’: DNS Filter Type NS Drop; ‘dns_filter_type_srv_drop’: DNS Filter Type SRV Drop; ‘dns_filter_type_ptr_drop’: DNS Filter Type PTR Drop; ‘dns_filter_type_soa_drop’: DNS Filter Type SOA Drop; ‘dns_filter_type_txt_drop’: DNS Filter Type TXT Drop; ‘dns_filter_type_any_drop’: DNS Filter Type Any Drop; ‘dns_filter_type_others_drop’: DNS Filter Type OTHERS Drop; ‘dns_filter_class_internet_drop’: DNS Filter Class INTERNET Drop; ‘dns_filter_class_chaos_drop’: DNS Filter Class CHAOS Drop; ‘dns_filter_class_hesiod_drop’: DNS Filter Class HESIOD Drop; ‘dns_filter_class_none_drop’: DNS Filter Class NONE Drop; ‘dns_filter_class_any_drop’: DNS Filter Class ANY Drop; ‘dns_filter_class_others_drop’: DNS Filter Class OTHERS Drop; ‘dns_rpz_action_drop’: DNS RPZ Action Drop; ‘dns_rpz_action_pass_thru’: DNS RPZ Action Pass Through; ‘dns_rpz_action_tcp_only’: DNS RPZ Action TCP Only; ‘dns_rpz_action_nxdomain’: DNS RPZ Action NXDOMAIN; ‘dns_rpz_action_nodata’: DNS RPZ Action NODATA; ‘dns_rpz_action_local_data’: DNS RPZ Action Local Data; ‘dns_rpz_trigger_client_ip’: DNS RPZ Trigger Client IP; ‘dns_rpz_trigger_resp_ip’: DNS RPZ Trigger Response IP; ‘dns_rpz_trigger_ns_ip’: DNS RPZ Trigger NS IP; ‘dns_rpz_trigger_qname’: DNS RPZ Trigger Qname IP; ‘dns_rpz_trigger_ns_name’: DNS RPZ Trigger NS Name;
Type: string
Supported Values: all, curr_conn, total_l4_conn, total_l7_conn, total_tcp_conn, total_conn, total_fwd_bytes, total_fwd_pkts, total_rev_bytes, total_rev_pkts, total_dns_pkts, total_mf_dns_pkts, es_total_failure_actions, compression_bytes_before, compression_bytes_after, compression_hit, compression_miss, compression_miss_no_client, compression_miss_template_exclusion, curr_req, total_req, total_req_succ, peak_conn, curr_conn_rate, last_rsp_time, fastest_rsp_time, slowest_rsp_time, loc_permit, loc_deny, loc_conn, curr_ssl_conn, total_ssl_conn, backend-time-to-first-byte, backend-time-to-last-byte, in-latency, out-latency, total_fwd_bytes_out, total_fwd_pkts_out, total_rev_bytes_out, total_rev_pkts_out, curr_req_rate, curr_resp, total_resp, total_resp_succ, curr_resp_rate, dnsrrl_total_allowed, dnsrrl_total_dropped, dnsrrl_total_slipped, dnsrrl_bad_fqdn, throughput-bits-per-sec, dynamic-memory-alloc, dynamic-memory-free, dynamic-memory, ip_only_lb_fwd_bytes, ip_only_lb_rev_bytes, ip_only_lb_fwd_pkts, ip_only_lb_rev_pkts, total_dns_filter_type_drop, total_dns_filter_class_drop, dns_filter_type_a_drop, dns_filter_type_aaaa_drop, dns_filter_type_cname_drop, dns_filter_type_mx_drop, dns_filter_type_ns_drop, dns_filter_type_srv_drop, dns_filter_type_ptr_drop, dns_filter_type_soa_drop, dns_filter_type_txt_drop, dns_filter_type_any_drop, dns_filter_type_others_drop, dns_filter_class_internet_drop, dns_filter_class_chaos_drop, dns_filter_class_hesiod_drop, dns_filter_class_none_drop, dns_filter_class_any_drop, dns_filter_class_others_drop, dns_rpz_action_drop, dns_rpz_action_pass_thru, dns_rpz_action_tcp_only, dns_rpz_action_nxdomain, dns_rpz_action_nodata, dns_rpz_action_local_data, dns_rpz_trigger_client_ip, dns_rpz_trigger_resp_ip, dns_rpz_trigger_ns_ip, dns_rpz_trigger_qname, dns_rpz_trigger_ns_name
acl-list¶
Specification Type list Block object keys acl-id
Description ACL id VPORT
Type: number
Range: 1-199
Mutual Exclusion: acl-id p-acl and shared-partition-acl are mutually exclusive
Reference Object: /axapi/v3/access-list/standard
acl-id-seq-num
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
acl-id-seq-num-shared
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
acl-id-shared
acl-id-src-nat-pool
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Mutual Exclusion: acl-id-src-nat-pool and shared-partition-pool-id are mutually exclusive
Reference Object: /axapi/v3/ip/nat/pool
acl-id-src-nat-pool-shared
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/nat/pool
acl-name
Description Apply an access list name (Named Access List)
Type: string
Format: string-rlx
Maximum Length: 16 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/access-list
acl-name-seq-num
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
acl-name-seq-num-shared
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
acl-name-shared
Description Apply an access list name (Named Access List)
Type: string
Format: string-rlx
Maximum Length: 16 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/access-list
acl-name-src-nat-pool
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Mutual Exclusion: acl-name-src-nat-pool shared-partition-pool-name and v-shared-partition-pool-name are mutually exclusive
Reference Object: /axapi/v3/ip/nat/pool
acl-name-src-nat-pool-shared
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/nat/pool
shared-partition-pool-id
Description Policy based Source NAT from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-pool-id and acl-id-src-nat-pool are mutually exclusive
shared-partition-pool-name
Description Policy based Source NAT from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: shared-partition-pool-name and acl-name-src-nat-pool are mutually exclusive
v-acl-id-seq-num
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
v-acl-id-seq-num-shared
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
v-acl-id-src-nat-pool
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Mutual Exclusion: v-acl-id-src-nat-pool and v-shared-partition-pool-id are mutually exclusive
Reference Object: /axapi/v3/ip/nat/pool
v-acl-id-src-nat-pool-shared
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/nat/pool
v-acl-name-seq-num
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
v-acl-name-seq-num-shared
Description Specify ACL precedence (sequence-number)
Type: number
Range: 1-32
v-acl-name-src-nat-pool
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/nat/pool
v-acl-name-src-nat-pool-shared
Description Policy based Source NAT (NAT Pool or Pool Group)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/ip/nat/pool
v-shared-partition-pool-id
Description Policy based Source NAT from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: v-shared-partition-pool-id and v-acl-id-src-nat-pool are mutually exclusive
v-shared-partition-pool-name
Description Policy based Source NAT from shared partition
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
Mutual Exclusion: v-shared-partition-pool-name and acl-name-src-nat-pool are mutually exclusive
aflex-scripts¶
Specification Type list Block object keys aflex
Description aFleX Script Name
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
aflex-shared
Description aFleX Script Name
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
auth-cfg¶
Specification Type object aaa-policy
Description Specify AAA policy name to bind to the virtual port
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/aam/aaa-policy
stats cache¶
| Counter | Size | Description | |
|---|---|---|---|
| nm_response | 2 | some help string | |
| rsp_type_304 | 2 | some help string | |
| rsp_other | 2 | some help string | |
| content_toosmall | 2 | slbTemplateCacheContentToosmall, help content_toosmall | |
| entry_create_failures | 2 | slbTemplateCacheEntryCreateFailures, help entry_create_failures | |
| nocache_match | 2 | some help string | |
| content_toobig | 2 | slbTemplateCacheContentToobig, help content_toobig | |
| nc_res_header | 2 | slbTemplateCacheNcResHeader, help nc_res_header | |
| miss | 2 | Cache misses | |
| nc_req_header | 2 | slbTemplateCacheNcReqHeader, help nc_req_header | |
| replaced_entry | 8 | some help string | |
| aging_entry | 8 | some help string | |
| mem_size | 8 | some help string | |
| header_save_error | 2 | some help string | |
| rsp_deflate | 2 | some help string | |
| invalidate_match | 2 | some help string | |
| match | 2 | some help string | |
| cleaned_entry | 8 | some help string | |
| entry_num | 8 | some help string | |
| total_req | 2 | Total requests received | |
| bytes_served | 2 | Bytes served from cache | |
| rv_success | 2 | some help string | |
| rv_failure | 2 | slbTemplateCacheRvFailure, help rv_failure | |
| rsp_gzip | 2 | some help string | |
| hits | 2 | Cache hits | |
| rsp_type_other | 2 | some help string | |
| rsp_type_CE | 2 | some help string | |
| rsp_no_compress | 2 | some help string | |
| rsp_type_CL | 2 | some help string | |
| caching_req | 2 | Total requests to cache | |
| ims_request | 2 | some help string | |
| rsp_type_stream | 2 | some help string |
stats client-ssh¶
| Counter | Size | Description | |
|---|---|---|---|
| forwarding_errors | 8 | some help string | |
| successful_handshakes | 8 | some help string | |
| failed_handshakes | 8 | some help string |
stats dns_vport¶
| Counter | Size | Description | |
|---|---|---|---|
| rcode_other_response | 8 | other rcode response | |
| dns_total_response | 8 | total response | |
| rcode_yxrrset_response | 8 | rcode yxrrset response | |
| rcode_badmode_response | 8 | edns bad mode response | |
| type_EXPIRE_query | 8 | edns EXPIRE query | |
| dns_filter_type_cname_drop | 8 | counters DNS Filter Type CNAME Drop | |
| type_NAPTR_query | 8 | dns NAPTR query | |
| slb_dns_server_ssl_succ | 8 | No. of server ssl success | |
| dns_recursive_resolution_respond_with_servfail | 8 | DNS Recursive Resolution Respond With Servfail | |
| dns_recursive_resolution_no_resolver | 8 | DNS Recursive Resolution No Resolver | |
| dns_filter_class_hesiod_drop | 8 | counters DNS Filter Class HESIOD Drop | |
| rcode_badalg_receive | 8 | edns response rcode bad alg receive | |
| dns_recursive_resolution_full_response | 8 | DNS Recursive Resolution Serving Full Response | |
| dns_recursive_resolution_res_submit_err | 8 | DNS Recursive Resolution Resolver Submit Err | |
| dns_recursive_resolution_retransmit_exceeded | 8 | DNS Recursive Resolution Retransmit Exceeded | |
| dns_filter_type_ptr_drop | 8 | counters DNS Filter Type PTR Drop | |
| dns_request_response | 8 | the request response by the device | |
| rcode_serverr_receive | 8 | response rcode server error receive | |
| type_N3U_query | 8 | edns N3U query | |
| dns_recursive_resolution_udp_conn_err | 8 | DNS Recursive Resolution UDP Conn Err | |
| gslb_query_fwd | 8 | gslb query forward | |
| type_NSID_query | 8 | edns NSID query | |
| dns_filter_class_others_drop | 8 | counters DNS Filter Class OTHER Drop | |
| type_DS_query | 8 | dns DS query | |
| rcode_badtime_receive | 8 | edns response rcode bad time receive | |
| dns_rpz_trigger_ns_ip | 8 | DNS RPZ Trigger NS IP | |
| dns_total_drop | 8 | total drop | |
| dns_recursive_resolution_missing_glue | 8 | DNS Recursive Resolution missing Glue Record | |
| type_SOA_query | 8 | dns SOA query | |
| rcode_serverr_response | 8 | rcode server error response | |
| rcode_notauth_receive | 8 | response rcode not auth receive | |
| type_AAAA_query | 8 | dns AAAA query | |
| rcode_badtranc_response | 8 | edns bad trancate response | |
| rcode_badcookie_response | 8 | edns bad cookie response | |
| dns_cache_hit | 8 | request cache hit | |
| type_CERT_query | 8 | dns CERT query | |
| dns_recursive_resolution_max_trials_exceeded | 8 | DNS Recursive Resolution Max Trials Exceeded | |
| type_CNAME_query | 8 | dns CNAME query | |
| type_CAA_query | 8 | dns CAA query | |
| type_AXFR_query | 8 | dns AXFR query | |
| dns_recursive_resolution_retransmit_sent | 8 | DNS Recursive Resolution Retransmit Sent | |
| total_filter_drop | 8 | query filter drop | |
| slb_dns_padding_to_server_removed | 8 | some help string | |
| dns_recursive_resolution_no_hints | 8 | DNS Recursive Resolution No Hints | |
| type_SRV_query | 8 | dns SRV query | |
| rcode_badcookie_receive | 8 | ends response rcode bad cookie receive | |
| dns_filter_type_txt_drop | 8 | counters DNS Filter Type TXT Drop | |
| dns_recursive_resolution_udp_send_failed | 8 | DNS Recursive Resolution UDP Send Failed | |
| type_NS_query | 8 | dns NS query | |
| rcode_yxdomain_receive | 8 | response rcode yxdomain receive | |
| dns_recursive_resolution_timeout | 8 | DNS Recursive Resolution Timed Out | |
| dns_rpz_action_nxdomain | 8 | DNS RPZ Action NXDOMAIN | |
| dns_request_timeout | 8 | request time out | |
| dns_request_rexmit | 8 | request retransmit | |
| rcode_nxrrset_response | 8 | rcode nxrrset response | |
| rcode_other_receive | 8 | other rcode receive | |
| dns_recursive_resolution_invalid_hints | 8 | DNS Recursive Resolution Invalid Hints | |
| dns_recursive_resolution_buff_alloc_failed | 8 | DNS Recursive Resolution Buffer Allocation Failed | |
| rcode_yxrrset_receive | 8 | response rcode yxrrset receive | |
| dns_recursive_resolution_resp_truncated | 8 | Dns Recursive Resolution Resp Truncated | |
| rcode_badver_receive | 8 | edns response rcode bad version receive | |
| dns_recursive_resolution_not_dplane | 8 | DNS Recursive Resolution Not Dplane | |
| type_other_query | 8 | dns other type query | |
| dns_recursive_resolution_ns_cache_hit | 8 | DNS Recursive Resolution Hit NS Cache entry with valid glue record | |
| slb_dns_udp_conn_succ | 8 | No. of backend udp conn established | |
| dns_filter_class_none_drop | 8 | counters DNS Filter Class NONE Drop | |
| total_dns_filter_type_drop | 8 | counters Total DNS Filter Type Drop | |
| type_CHAIN_query | 8 | edns CHAIN query | |
| gslb_response_good | 8 | gslb response good | |
| dns_request_send | 8 | request send to backend server | |
| gslb_response_drop | 8 | gslb response drop | |
| dns_filter_type_a_drop | 8 | counters DNS Filter Type A Drop | |
| dns_full_response_from_cache | 8 | DNS Full Response from Cache | |
| slb_dns_client_ssl_succ | 8 | No. of client ssl success | |
| dns_filter_type_any_drop | 8 | counters DNS Filter Type Any Drop | |
| rcode_notauth_response | 8 | rcode not auth response | |
| dns_recursive_resolution_query_not_sent | 8 | DNS Recursive Resolution Query Not Sent | |
| dns_recursive_resolution_res_check_err | 8 | DNS Recursive Resolution Resolver Check Err | |
| dns_filter_type_aaaa_drop | 8 | counters DNS Filter Type AAAA Drop | |
| total_mf_dns_pkt | 8 | total malform dns pkt | |
| slb_dns_udp_retransmit | 8 | some help string | |
| type_DNSKEY_query | 8 | dns DNSKEY query | |
| type_TSIG_query | 8 | dns TSIG query | |
| gslb_response_bad | 8 | gslb response bad | |
| type_PTR_query | 8 | dns PTR query | |
| rcode_badtranc_receive | 8 | edns response rcode bad trancate receive | |
| slb_dns_udp_conn | 8 | No. of backend udp connections | |
| rcode_nxdomain_response | 8 | rcode name error response | |
| dns_response_send | 8 | response send to client | |
| dnsrrl_total_slipped | 8 | DNS Response-Rate-Limiting Total Responses Slipped | |
| gslb_query_bad | 8 | gslb query bad | |
| dns_tcp_pipeline_request_drop | 8 | DNS TCP Pipeline Request Drop | |
| dns_rpz_trigger_resp_ip | 8 | DNS RPZ Trigger Response IP | |
| dns_rpz_action_pass_thru | 8 | DNS RPZ Action Pass Through | |
| dns_rpz_action_drop | 8 | DNS RPZ Action Drop | |
| gslb_drop | 8 | gslb drop | |
| rcode_badname_response | 8 | edns bad name response | |
| rcode_dsotypen_response | 8 | rcode dsotypen response | |
| dns_filter_class_internet_drop | 8 | counters DNS Filter Class INTERNET Drop | |
| rcode_nxdomain_receive | 8 | response rcode nxdomain receive | |
| dns_filter_class_chaos_drop | 8 | counters DNS Filter Class CHAOS Drop | |
| dnsrrl_bad_fqdn | 8 | DNS Response-Rate-Limiting Bad FQDN | |
| dns_recursive_resolution_started | 8 | DNS Recursive Resolution Started | |
| dns_request_drop | 8 | request drop | |
| dns_filter_type_mx_drop | 8 | counters DNS Filter Type MX Drop | |
| dnsrrl_total_dropped | 8 | dns rrl drop | |
| type_DAU_query | 8 | edns DAU query | |
| rcode_formerr_response | 8 | rcode format error response | |
| dns_recursive_resolution_ns_cache_miss | 8 | DNS DNS Recursive Resolution cache miss for NS Cache entry | |
| dns_recursive_resolution_tcp_conn_err | 8 | DNS Recursive Resolution TCP Conn Err | |
| type_MX_query | 8 | dns MX query | |
| dns_rpz_trigger_ns_name | 8 | DNS RPZ Trigger NS Name | |
| dns_recursive_resolution_succeeded | 8 | DNS Recursive Resolution Succeeded | |
| type_A_query | 8 | dns A query | |
| rcode_badkey_receive | 8 | edns response rcode bad key receive | |
| rcode_badkey_response | 8 | ends bad key response | |
| rcode_badmode_receive | 8 | ends response rcode bad name receive | |
| total_max_query_len_drop | 8 | query too long drop | |
| type_COOKIE_query | 8 | edns COOKIE query | |
| type_KEEPALIVE_query | 8 | edns KEEPALIVE query | |
| dns_recursive_resolution_query_dropped | 8 | DNS Recursive Resolution Query Dropped | |
| rcode_notimpl_receive | 8 | response rcode type error receive | |
| dns_rpz_trigger_client_ip | 8 | DNS RPZ Trigger Client IP | |
| dns_recursive_resolution_pending_resolution | 8 | DNS Recursive Resolution Pending Resolution | |
| dns_total_request | 8 | total request | |
| rcode_refuse_receive | 8 | response rcode refuse receive | |
| dns_filter_type_ns_drop | 8 | counters DNS Filter Type NS Drop | |
| total_mf_dns_pkt_detect | 8 | total malform dns pkt detected | |
| dns_filter_type_srv_drop | 8 | counters DNS Filter Type SRV Drop | |
| dns_filter_type_others_drop | 8 | counters DNS Filter Type OTHERS Drop | |
| gslb_query_drop | 8 | gslb query drop | |
| dns_rpz_trigger_qname | 8 | DNS RPZ Trigger Qname IP | |
| rcode_yxdomain_response | 8 | rcode yxdomain response | |
| dns_rpz_action_tcp_only | 8 | DNS RPZ Action TCP Only | |
| gslb_response_rvs | 8 | gslb response reverse | |
| rcode_refuse_response | 8 | rcode refuse response | |
| rcode_notimpl_response | 8 | rcode type error response | |
| rcode_badtime_response | 8 | edns bad time response | |
| rcode_noerror_generate | 8 | rcode no error generate | |
| dns_rpz_action_nodata | 8 | DNS RPZ Action NODATA | |
| dns_recursive_resolution_send_failed | 8 | DNS Recursive Resolution Send Failed | |
| slb_dns_padding_to_client_added | 8 | some help string | |
| type_PADDING_query | 8 | edns PADDING query | |
| dns_recursive_resolution_icmp_err | 8 | DNS Recursive Resolution ICMP Err | |
| slb_dns_udp_retransmit_fail | 8 | some help string | |
| dns_filter_class_any_drop | 8 | counters DNS Filter Class ANY Drop | |
| rcode_dsotypen_receive | 8 | response rcode dsotypen receive | |
| rcode_badname_receive | 8 | ends response rcode bad name receive | |
| rcode_badalg_response | 8 | ends bad alg response | |
| type_TXT_query | 8 | dns TXT query | |
| dns_recursive_resolution_ongoing_client_retransmit | 8 | DNS Recursive Resolution Ongoing Client Retransmit | |
| rcode_formerr_receive | 8 | response rcode form error receive | |
| dns_filter_type_soa_drop | 8 | counters DNS Filter Type SOA Drop | |
| rcode_nxrrset_receive | 8 | response rcode nxrrset receive | |
| dns_response_drop | 8 | response drop | |
| dnsrrl_total_allowed | 8 | DNS Response-Rate-Limiting Total Responses Allowed | |
| slb_dns_edns_subnet_to_server_removed | 8 | some help string | |
| dns_rpz_action_local_data | 8 | DNS RPZ Action Local Data | |
| type_IXFR_query | 8 | dns IXFR query | |
| rcode_badver_response | 8 | edns bad var response | |
| type_ANY_query | 8 | dns ANY query | |
| total_dns_filter_class_drop | 8 | counters Total DNS Filter Class Drop | |
| type_RRSIG_query | 8 | dns RRSIG query |
stats http_vport¶
| Counter | Size | Description | |
|---|---|---|---|
| jsi_api_no_token | 2 | JSI API no token in auth hdr | |
| REQ_50u | 2 | Rsp time less than 50u | |
| http2_control_bytes | 8 | Bytes in HTTP/2 control frames | |
| doh_get_base64_decode_failed | 8 | DoH GET base64url decode failed | |
| ws_server_switch | 2 | WS Server Pkts | |
| doh_req_send_failed | 8 | DoH Request Send Failed | |
| req_get | 8 | Method GET | |
| doh_req | 8 | DoH Requests | |
| chunk_sz_2k | 8 | Chunk less than equal to 2K | |
| doh_resp_send_failed | 8 | DoH Response Send Failed | |
| REQ_50m | 2 | Rsp time less than 5m | |
| req_put | 8 | Method PUT | |
| status_450 | 2 | Status code 450 | |
| doh_tcp_send_failed | 8 | DoH serv TCP DNS send failed | |
| REQ_500m | 2 | Rsp time less than 500m | |
| doh_non_doh_req_post | 8 | DoH non DoH POST Requests | |
| http2_reset_received | 8 | Reset frames received | |
| jsi_hash_add_fails | 2 | JSI hash addition failures | |
| doh_dns_resp_rcode_err_name | 8 | DoH DNS Response rcode ERR_NAME | |
| status_510 | 2 | Status code 510 | |
| ws_handshake_request | 2 | WS Handshake Req | |
| jsi_api_responses | 2 | JSI API responses | |
| req_sz_2k | 8 | Req less than equal to 2K | |
| http2_header_bytes | 8 | Bytes in HTTP/2 header frames | |
| req_post | 8 | Method POST | |
| rsp_chunk | 8 | Resp chunk encoding | |
| doh_dns_resp_rcode_err_server | 8 | DoH DNS Response rcode ERR_SERVER | |
| status_207 | 2 | Status code 207 | |
| status_206 | 2 | Status code 206 | |
| status_205 | 2 | Status code 205 | |
| status_204 | 2 | Status code 204 | |
| status_203 | 2 | Status code 203 | |
| status_202 | 2 | Status code 202 | |
| status_201 | 2 | Status code 201 | |
| status_200 | 2 | Status code 200 | |
| jsi_api_no_auth_hdr | 2 | JSI API no auth hdr | |
| ws_client_switch | 2 | WS Client Pkts | |
| doh_dns_resp_rcode_notauth | 8 | DoH DNS Response rcode NOTAUTH | |
| status_406 | 2 | Status code 406 | |
| http2_goaway_received | 8 | GoAway frames received | |
| doh_resp_setup_failed | 8 | DoH Response setup failed | |
| REQ_20u | 2 | Rsp time less than 20u | |
| rsp_sz_32k | 8 | Resp less than equal to 32K | |
| status_4xx | 2 | status code 4XX | |
| rsp_sz_gt_256k | 8 | Resp greater than 256K | |
| total_requests | 8 | Total number of Requests | |
| status_3xx | 2 | status code 3XX | |
| REQ_200u | 2 | Rsp time less than 200u | |
| stream_closed | 8 | HTTP/2 streams closed | |
| rsp_sz_2k | 8 | Resp less than equal to 2K | |
| rsp_sz_1k | 8 | Resp less than equal to 1K | |
| REQ_100m | 2 | Rsp time less than 100m | |
| REQ_5m | 2 | Rsp time less than 5m | |
| rsp_sz_256k | 8 | Resp less than equal to 256K | |
| REQ_100u | 2 | Rsp time less than 100u | |
| chunk_sz_512 | 8 | Chunk less than equal to 512 | |
| REQ_5s | 2 | Rsp time less than 5s | |
| chunk_sz_4k | 8 | Chunk less than equal to 4K | |
| rsp_sz_8k | 8 | Resp less than equal to 8K | |
| rsp_sz_16k | 8 | Resp less than equal to 16K | |
| req_sz_4k | 8 | Req less than equal to 4K | |
| req_sz_256k | 8 | Req less than equal to 256K | |
| jsi_hash_lookup_fails | 2 | JSI hash lookup failures | |
| REQ_20m | 2 | Rsp time less than 20m | |
| doh_dns_resp_rcode_refuse | 8 | DoH DNS Response rcode REFUSE | |
| doh_req_tcp_retry | 8 | DoH TCP Retry | |
| header_length_long | 2 | HTTP Header length too long | |
| doh_non_doh_req_get | 8 | DoH non DoH GET Requests | |
| rsp_sz_64k | 8 | Resp less than equal to 64K | |
| doh_path_not_found | 8 | DoH URI Path not found | |
| REQ_500u | 2 | Rsp time less than 500u | |
| REQ_2s | 2 | Rsp time less than 2s | |
| jsi_api_requests | 2 | JSI API requests (AJAX) | |
| req_sz_gt_256k | 8 | Req greater than 256K | |
| doh_resp_que_failed | 8 | DoH Resp queue failed | |
| doh_dns_query_type_others | 8 | DoH Query type Others | |
| total_http2_bytes | 8 | Total bytes in HTTP/2 frames | |
| http2_reset_sent | 8 | Reset frames sent | |
| REQ_200m | 2 | Rsp time less than 200m | |
| status_307 | 2 | Status code 307 | |
| status_304 | 2 | Status code 304 | |
| status_305 | 2 | Status code 305 | |
| status_302 | 2 | Status code 302 | |
| status_303 | 2 | Status code 303 | |
| status_300 | 2 | Status code 300 | |
| status_301 | 2 | Status code 301 | |
| doh_non_doh_req | 8 | DoH non DoH Requests | |
| doh_req_tcp_retry_fail | 8 | DoH TCP Retry failed | |
| REQ_10u | 2 | Rsp time less than 10u | |
| doh_dns_query_type_srv | 8 | DoH Query type SRV | |
| doh_post_payload_extract_failed | 8 | DoH POST payload extract failed | |
| doh_dns_query_type_soa | 8 | DoH Query type SOA | |
| doh_dns_query_type_ns | 8 | DoH Query type NS | |
| doh_req_post | 8 | DoH POST Requests | |
| total_http2_conn | 8 | Total number of HTTP/2 connections | |
| doh_dns_query_type_a | 8 | DoH Query type A | |
| req_sz_1k | 8 | Req less than equal to 1K | |
| doh_dns_malformed_query | 8 | DoH DNS Malformed Query | |
| REQ_10m | 2 | Rsp time less than 10m | |
| req_delete | 8 | Method DELETE | |
| doh_get_uri_too_long | 8 | DoH GET URI too long | |
| doh_post_payload_too_large | 8 | DoH POST Payload too large | |
| doh_req_udp_retry | 8 | DoH UDP Retry | |
| rsp_sz_4k | 8 | Resp less than equal to 4K | |
| status_306 | 2 | Status code 306 | |
| peak_http2_conn | 8 | Largest number of concurrent HTTP/2 connections | |
| doh_udp_dns_req | 8 | DoH UDP DNS Requests | |
| doh_dns_resp_rcode_err_format | 8 | DoH DNS Response rcode ERR_FORMAT | |
| jsi_requests | 2 | JSI requests | |
| req_content_len | 8 | Req content len | |
| status_412 | 2 | Status code 412 | |
| status_413 | 2 | Status code 413 | |
| status_410 | 2 | Status code 410 | |
| status_411 | 2 | Status code 411 | |
| status_416 | 2 | Status code 416 | |
| status_417 | 2 | Status code 417 | |
| status_414 | 2 | Status code 414 | |
| status_415 | 2 | Status code 415 | |
| doh_malloc_fail | 8 | DoH Memory alloc failed | |
| doh_dns_resp_rcode_yxrrset | 8 | DoH DNS Response rcode YXRRSET | |
| status_418 | 2 | Status code 418 | |
| status_unknown | 2 | Status code unknown | |
| status_100 | 2 | Status code 100 | |
| status_101 | 2 | Status code 101 | |
| status_102 | 2 | Status code 102 | |
| status_103 | 2 | Status code 103 | |
| jsi_responses | 2 | JSI responses | |
| req_trace | 8 | Method TRACE | |
| REQ_2m | 2 | Rsp time less than 2m | |
| jsi_pri_requests | 2 | JSI primary requests (AJAX) | |
| doh_tcp_dns_req | 8 | DoH TCP DNS Requests | |
| req_track | 8 | Method TRACK | |
| jsi_skip_no_fi | 2 | JSI skipped - File Inspection not configured | |
| doh_tcp_dns_resp | 8 | DoH TCP DNS Responses | |
| curr_http2_conn | 8 | Current number of HTTP/2 connections | |
| ws_handshake_success | 2 | WS Handshake Res | |
| doh_dns_resp_rcode_other | 8 | DoH DNS Response rcode OTHER | |
| status_504_ax | 2 | Status code 504 AX-gen | |
| doh_query_time_out | 8 | DoH serv Query timed out | |
| doh_retry_w_tcp | 8 | DoH Retry with TCP SG | |
| status_6xx | 2 | status code 6XX | |
| doh_post_payload_not_found | 8 | DoH POST payload not found | |
| status_5xx | 2 | status code 5XX | |
| doh_udp_send_failed | 8 | DoH serv UDP DNS send failed | |
| doh_dns_resp_rcode_yxdomain | 8 | DoH DNS Response rcode YXDOMAIN | |
| doh_resp_tcp_frags | 8 | DoH TCP Frags Rcvd | |
| status_401 | 2 | Status code 401 | |
| status_400 | 2 | Status code 400 | |
| status_403 | 2 | Status code 403 | |
| status_402 | 2 | Status code 402 | |
| status_405 | 2 | Status code 405 | |
| status_404 | 2 | Status code 404 | |
| status_407 | 2 | Status code 407 | |
| status_2xx | 2 | status code 2XX | |
| status_409 | 2 | Status code 409 | |
| status_408 | 2 | Status code 408 | |
| req_options | 8 | Method OPTIONS | |
| jsi_skip_not_browser | 2 | JSI skipped - not fromm browser | |
| doh_dns_resp_rcode_notzone | 8 | DoH DNS Response rcode NOTZONE | |
| doh_dns_resp_rcode_nxrrset | 8 | DoH DNS Response rcode NXRRSET | |
| http2_goaway_sent | 8 | GoAway frames sent | |
| doh_dns_query_type_any | 8 | DoH Query type ANY | |
| doh_non_doh_method | 8 | DoH Non DoH HTTP request method rcvd | |
| req_sz_8k | 8 | Req less than equal to 8K | |
| REQ_1m | 2 | Rsp time less than 1m | |
| doh_serv_sel_failed | 8 | DoH Server Select Failed | |
| doh_dns_query_type_mx | 8 | DoH Query type MX | |
| jsi_skip_no_ua | 2 | JSI skipped - no User-Agent | |
| REQ_1s | 2 | Rsp time less than 1s | |
| status_1xx | 2 | status code 1XX | |
| doh_resp_udp_frags | 8 | DoH UDP Frags Rcvd | |
| doh_tc_resp | 8 | DoH TC Responses | |
| doh_dns_query_type_cname | 8 | DoH Query type CNAME | |
| doh_udp_dns_resp | 8 | DoH UDP DNS Responses | |
| doh_dns_resp_rcode_err_type | 8 | DoH DNS Response rcode ERR_TYPE | |
| req_connect | 8 | Method CONNECT | |
| doh_resp | 8 | DoH Responses | |
| doh_resp_header_alloc_failed | 8 | DoH Resp hdr alloc failed | |
| http2_data_bytes | 8 | Bytes in HTTP/2 data frames | |
| doh_req_udp_retry_fail | 8 | DoH UDP Retry failed | |
| req_head | 8 | Method HEAD | |
| req_unknown | 8 | Method UNKNOWN | |
| req_sz_16k | 8 | Req less than equal to 16K | |
| chunk_sz_gt_4k | 8 | Chunk greater than 4K | |
| doh_req_get | 8 | DoH GET Requests | |
| doh_get_dns_arg_failed | 8 | DoH GET dns arg not found in uri | |
| req_sz_64k | 8 | Req less than equal to 64K | |
| doh_snat_failed | 8 | DoH Source NAT failed | |
| status_423 | 2 | Status code 423 | |
| status_422 | 2 | Status code 422 | |
| status_426 | 2 | Status code 426 | |
| status_425 | 2 | Status code 425 | |
| status_424 | 2 | Status code 424 | |
| status_508 | 2 | Status code 508 | |
| status_509 | 2 | Status code 509 | |
| REQ_OVER_5s | 2 | Rsp time greater than equal to 5s | |
| status_500 | 2 | Status code 500 | |
| status_501 | 2 | Status code 501 | |
| status_502 | 2 | Status code 502 | |
| status_503 | 2 | Status code 503 | |
| status_504 | 2 | Status code 504 | |
| status_505 | 2 | Status code 505 | |
| status_506 | 2 | Status code 506 | |
| status_507 | 2 | Status code 507 | |
| chunk_sz_1k | 8 | Chunk less than equal to 1K | |
| req_sz_32k | 8 | Req less than equal to 32K | |
| status_449 | 2 | Status code 449 | |
| doh_dns_query_type_aaaa | 8 | DoH Query type AAAA | |
| doh_post_content_type_mismatch | 8 | DoH POST content-type not found |
stats server-ssh¶
| Counter | Size | Description | |
|---|---|---|---|
| forwarding_errors | 8 | some help string | |
| successful_handshakes | 8 | some help string | |
| failed_handshakes | 8 | some help string |
stats smtp_vport¶
| Counter | Size | Description | |
|---|---|---|---|
| cmd_local | 2 | Local extension commands | |
| cmd_noop | 2 | NOOP commands | |
| send_server_ehlo | 8 | Proxy sends server EHLO | |
| reply_100u | 2 | Reply time less than 100u | |
| aflex_switch | 8 | aFlex SMTP switching | |
| reply_100m | 2 | Reply time less than 100m | |
| code_451 | 2 | Reply code 451 | |
| code_450 | 2 | Reply code 450 | |
| code_452 | 2 | Reply code 452 | |
| code_455 | 2 | Reply code 455 | |
| cmd_expn | 2 | EXPN commands | |
| code_521 | 2 | Reply code 521 | |
| reply_2s | 2 | Reply time less than 2s | |
| data_sz_64k | 2 | Data size less than 64KB | |
| reply_2m | 2 | Reply time less than 2m | |
| code_556 | 2 | Reply code 556 | |
| data_sz_8k | 2 | Data size less than 8KB | |
| cmd_starttls | 2 | STARTTLS commands | |
| code_421 | 2 | Reply code 421 | |
| data_sz_16k | 2 | Data size less than 16KB | |
| code_554 | 2 | Reply code 554 | |
| code_555 | 2 | Reply code 555 | |
| code_4xx | 2 | Reply code 4XX | |
| code_550 | 2 | Reply code 550 | |
| code_551 | 2 | Reply code 551 | |
| code_552 | 2 | Reply code 552 | |
| code_553 | 2 | Reply code 553 | |
| code_252 | 2 | Reply code 252 | |
| code_251 | 2 | Reply code 251 | |
| code_250 | 2 | Reply code 250 | |
| cmd_vrfy | 2 | VRFY commands | |
| data_sz_256k | 2 | Data size less than 256KB | |
| total_conn | 8 | Total number of SMTP connections | |
| total_replies | 8 | Total number of replies received | |
| reply_10m | 2 | Reply time less than 10m | |
| aflex_ehlo_sent | 8 | aFlex SMTP EHLO sent | |
| data_sz_32k | 2 | Data size less than 32KB | |
| code_5xx | 2 | Reply code 5XX | |
| reply_10u | 2 | Reply time less than 10u | |
| data_sz_128k | 2 | Data size less than 128KB | |
| client_ehlo_saved | 8 | Client EHLO saved | |
| data_sz_gt_1m | 2 | Data size greater than 1MB | |
| data_sz_2k | 2 | Data size less than 2KB | |
| reply_200m | 2 | Reply time less than 200m | |
| data_sz_512k | 2 | Data size less than 512KB | |
| reply_over_5s | 2 | Reply time greater than equal to 5s | |
| reply_200u | 2 | Reply time less than 200u | |
| reply_500u | 2 | Reply time less than 500u | |
| reply_5s | 2 | Reply time less than 5s | |
| reply_5m | 2 | Reply time less than 5m | |
| reply_500m | 2 | Reply time less than 500m | |
| reply_20u | 2 | Reply time less than 20u | |
| cmd_rcpt | 2 | RCPT commands | |
| cmd_mail | 2 | MAIL commands | |
| cmd_turn | 2 | TURN commands | |
| reply_20m | 2 | Reply time less than 20m | |
| code_200 | 2 | Reply code 200 | |
| cmd_unknown | 2 | Unknown commands | |
| cmd_data | 2 | DATA commands | |
| server_bytes | 8 | Total bytes in SMTP replies | |
| cmd_quit | 2 | QUIT commands | |
| peak_conn | 8 | Largest number of concurrent SMTP connections | |
| fail_to_save_client_ehlo | 8 | Failed to save client EHLO | |
| curr_conn | 8 | Current number of SMTP connections | |
| aflex_mail_fail | 8 | aFlex Mail event abort | |
| cmd_etrn | 2 | ETRN commands | |
| reply_50m | 2 | Reply time less than 5m | |
| code_214 | 2 | Reply code 214 | |
| code_211 | 2 | Reply code 211 | |
| code_354 | 2 | Reply code 354 | |
| drop_server_ehlo_ok | 8 | Server EHLO-OK dropped | |
| data_sz_4k | 2 | Data size less than 4KB | |
| reply_50u | 2 | Reply time less than 50u | |
| code_2xx | 2 | Reply code 2XX | |
| code_3xx | 2 | Reply code 3XX | |
| code_220 | 2 | Reply code 220 | |
| code_221 | 2 | Reply code 221 | |
| client_bytes | 8 | Total bytes in SMTP commands | |
| code_503 | 2 | Reply code 503 | |
| code_502 | 2 | Reply code 502 | |
| code_501 | 2 | Reply code 501 | |
| code_500 | 2 | Reply code 500 | |
| code_504 | 2 | Reply code 504 | |
| code_unknown | 2 | Reply code unknown | |
| total_commands | 8 | Total number of commands received | |
| data_sz_1m | 2 | Data size less than 1MB | |
| data_sz_1k | 2 | Data size less than 1KB | |
| cmd_helo | 2 | HELO commands | |
| cmd_ehlo | 2 | EHLO commands | |
| cmd_help | 2 | HELP commands | |
| cmd_rset | 2 | RSET commands | |
| aflex_switch_ok | 8 | aFlex SMTP switching success | |
| reply_1s | 2 | Reply time less than 1s | |
| code_530 | 2 | Reply code 530 | |
| reply_1m | 2 | Reply time less than 1m |
stats waf¶
| Counter | Size | Description | |
|---|---|---|---|
| response_cloaking_hide_status_code_success | 8 | Response Hide Code check passed | |
| http_limit_max_header_name_length_violation | 8 | MAX header name length check violation | |
| dlp_ccn_mastercard_violation | 8 | MasterCard Credit Card Number Detected | |
| request_check_url_blacklist_success | 8 | URI Black List passed | |
| http_limit_max_data_parse_violation | 8 | Buffer Overflow - Max Data Parse violation | |
| brute_force_challenge_cookie_violation | 8 | Cookie challenge violation | |
| evasion_check_remove_spaces_success | 8 | Remove Spaces check passed | |
| cookie_security_persistent_cookies | 8 | Cookie Security - persistent cookies | |
| form_non_masked_password_violation | 8 | Form Non Masked Password violation | |
| http_limit_max_cookies_length_violation | 8 | MAX cookies length violation | |
| request_check_command_injection_uri_query_success | 8 | Command Injection Check url query arguments passed | |
| form_response_non_post_violation | 8 | Response form method was not POST | |
| cookie_security_allowed_persistent_set_cookies | 8 | Cookie Security - disallowed persistent Set-Cookies | |
| request_check_session_check_none | 8 | Session Created | |
| request_check_referer_redirect | 8 | Referer Check Redirect | |
| xml_check_max_cdata_len_violation | 8 | XML Limit CData Length violation | |
| evasion_check_high_ascii_bytes_violation | 8 | High Ascii Bytes check violation | |
| http_limit_max_param_value_length_violation | 8 | Limit check - MAX parameter value length violation | |
| request_check_url_list_learn | 8 | URL Check Learn | |
| request_check_xss_post_body_sanitize | 8 | XSS Check Post Sanitized | |
| form_check_sanitize | 8 | Post Form Check Sanitized | |
| brute_force_challenge_cookie_sent | 8 | Cookie Challenge Sent | |
| http_limit_max_post_length_violation | 8 | MAX POST length violation | |
| cookie_security_signature_check_violation | 8 | Cookie Security - signature check violation | |
| http_protocol_host_header_with_ip_violation | 8 | Host header with IP check violation | |
| json_check_max_depth_violation | 8 | JSON Limit Depth violation | |
| evasion_check_decode_entities_success | 8 | Decode Entities check passed | |
| xml_check_max_namespace_violation | 8 | XML Limit Namespace violation | |
| brute_force_response_string_triggered | 8 | Brute Force Response string Triggered | |
| action_learn | 8 | Request Learning Updates | |
| request_check_url_list_success | 8 | URL Check passed | |
| http_protocol_malformed_request_line_violation | 8 | Malformed request line check violation | |
| http_limit_max_params_length_success | 8 | Limit check - MAX parameters total length check passed | |
| resp_denied | 8 | Responses Denied | |
| request_check_sqlia_post_body_success | 8 | SQLIA Check Post passed | |
| cookie_security_decrypt_success | 8 | Cookie Security - decrypt successful | |
| http_limit_max_param_value_length_success | 8 | Limit check - MAX parameter value length check passed | |
| xml_check_max_attr_name_len_violation | 8 | XML Limit Name Length violation | |
| cookie_security_session_cookies | 8 | Cookie Security - session cookies | |
| request_check_sqlia_url_violation | 8 | SQLIA Check URL violation | |
| form_tag_inserted | 8 | Form A10 Tag Inserted | |
| max_url_length_success | 8 | Limit check - MAX URL length check passed | |
| brute_force_response_codes_triggered | 8 | Response Codes Triggered | |
| http_limit_max_cookies_success | 8 | Max Cookies check passed | |
| http_limit_max_content_length_success | 8 | MAX content-length check passed | |
| cookie_security_sign_skip_rcache | 8 | Cookie Security - signing skipped - RAM Cache | |
| xml_check_max_attr_value_len_violation | 8 | XML Limit Value Length violation | |
| http_protocol_post_with_0_content_violation | 8 | POST with 0 content check violation | |
| cookie_security_disallowed_persistent_cookies | 8 | Cookie Security - disallowed persistent cookies | |
| xml_content_check_schema_violation | 8 | XML Schema violation | |
| evasion_check_multiple_slashes_violation | 8 | Multiple Slashes check violation | |
| http_limit_max_request_length_success | 8 | Limit check - MAX request length check passed | |
| response_cloaking_filter_headers_violation | 8 | Response Headers Filter violation | |
| request_check_command_injection_uri_query_violation | 8 | Command Injection Check url query arguments violation | |
| csp_header_violation | 8 | CSP header missing | |
| http_protocol_post_without_content_type_violation | 8 | POST without content type check violation | |
| http_limit_max_cookie_header_length_success | 8 | MAX cookie header length check passed | |
| http_protocol_post_without_content_success | 8 | POST without content check passed | |
| json_check_format_success | 8 | JSON Check passed | |
| xml_check_max_elem_success | 8 | XML Limit Element check passed | |
| xml_check_xss_success | 8 | XML XSS Check passed | |
| response_action_log | 8 | Log response violation | |
| http_limit_max_headers_success | 8 | MAX headers count check passed | |
| request_check_url_whitelist_success | 8 | URI White List passed | |
| dlp_pcre_violation | 8 | PCRE Mask violation | |
| brute_force_success | 8 | Brute-Force checks passed | |
| cookie_security_decrypt_in_grace_period_violation | 8 | Cookie Decrypt violation but in grace period | |
| http_limit_max_cookie_name_length_violation | 8 | MAX cookie name length violation | |
| evasion_check_decode_escaped_chars_success | 8 | Decode Escaped Chars check passed | |
| dlp_ccn_discover_masked | 8 | Discover Credit Card Number Masked | |
| cookie_security_add_http_only_violation | 8 | Cookie Security - http-only flag violation | |
| request_check_xss_url_success | 8 | XSS Check URL passed | |
| xml_check_max_entity_exp_depth_violation | 8 | XML Limit Entities Depth violation | |
| http_protocol_post_without_content_type_success | 8 | POST without content type check passed | |
| action_deny_200 | 8 | Request Deny with 200 | |
| cookie_security_encrypt_limit_exceeded | 8 | Cookie Security - encrypt limit exceeded | |
| http_protocol_body_without_content_type_violation | 8 | Body without content type check violation | |
| xml_check_max_entity_exp_violation | 8 | XML Limit Entity Decl violation | |
| csp_header_success | 8 | CSP header found | |
| cookie_security_unrecognized_cookie_violation | 8 | Cookie Security - unrecognized cookie violation | |
| dlp_pcre_masked | 8 | PCRE Mask violation | |
| xml_check_format_success | 8 | XML Check passed | |
| xml_check_namespace_uri_len_violation | 8 | XML Limit Namespace URI Length violation | |
| http_protocol_malformed_parameter_violation | 8 | Malformed parameter check violation | |
| request_check_command_injection_cookies_violation | 8 | Command Injection Check cookies violation | |
| json_check_format_violation | 8 | JSON Check violation | |
| form_set_no_cache_success | 8 | Form Set No Cache check passed | |
| xml_check_xss_violation | 8 | XML XSS Check violation | |
| brute_force_challenge_captcha_sent | 8 | Captcha challenge sent | |
| dlp_ssn_success | 8 | Social Security Number Mask check passed | |
| brute_force_lockout_limit_success | 8 | Lockout limit check passed | |
| cookie_security_cookie_policy_violation | 8 | Cookie Security - cookie policy violation | |
| xml_check_max_entity_decl_violation | 8 | XML Limit Entity Decl violation | |
| http_protocol_missing_host_header_success | 8 | Missing host header check passed | |
| http_protocol_malformed_request_violation | 8 | Malformed request check violation | |
| http_limit_max_request_length_violation | 8 | Limit check - MAX request length violation | |
| xml_check_max_elem_child_violation | 8 | XML Limit Element Child violation | |
| http_protocol_malformed_header_violation | 8 | Malformed header check passed | |
| request_check_session_check_success | 8 | Session Check passed | |
| request_check_bot_violation | 8 | Bot check violation | |
| request_check_sqlia_url_sanitize | 8 | SQLIA Check URL Sanitized | |
| http_limit_max_header_length_violation | 8 | MAX header length check violation | |
| max_url_length_violation | 8 | Limit check - MAX URL length violation | |
| http_protocol_allowed_headers_success | 8 | HTTP headers check passed | |
| evasion_check_dir_traversal_violation | 8 | Dir traversal check violation | |
| form_request_non_post_violation | 8 | Form Method being Non Post in Request violation | |
| request_check_xss_post_body_violation | 8 | XSS Check Post violation | |
| cookie_security_sign_success | 8 | Cookie Security - signing successful | |
| evasion_check_remove_spaces_violation | 8 | Remove Spaces check violation | |
| http_limit_max_data_parse_success | 8 | Buffer Overflow - Max Data Parse check passed | |
| evasion_check_dir_traversal_success | 8 | Dir traversal check passed | |
| form_consistency_violation | 8 | Form Consistency violation | |
| http_protocol_malformed_request_success | 8 | Malformed request check passed | |
| request_check_xss_url_sanitize | 8 | XSS Check URL Sanitized | |
| http_limit_max_cookie_name_length_success | 8 | MAX cookie name length check passed | |
| xml_check_max_elem_violation | 8 | XML Limit Element violation | |
| request_check_command_injection_headers_success | 8 | Command Injection Check headers passed | |
| brute_force_challenge_cookie_success | 8 | Cookie Challenge check passed | |
| cookie_security_allowed_session_cookies | 8 | Cookie Security - allowed session cookies | |
| xml_check_max_elem_depth_violation | 8 | XML Limit Element Depth violation | |
| response_action_deny_reset | 8 | Response Deny with Resets | |
| http_protocol_malformed_request_line_success | 8 | Malformed request line check passed | |
| form_set_no_cache | 8 | Form Set No Cache violation | |
| request_check_sqlia_post_body_violation | 8 | SQLIA Check Post violation | |
| form_check_violation | 8 | Post Form Check violation | |
| response_action_allow | 8 | Response Action allowed | |
| evasion_check_max_levels_violation | 8 | Max Levels check violation | |
| cookie_security_encrypt_violation | 8 | Cookie Security - encrypt violation | |
| brute_force_lockout_limit_violation | 8 | Lockout limit violation | |
| http_protocol_allowed_method_check_violation | 8 | HTTP Method Check violation | |
| http_protocol_malformed_content_length_success | 8 | Malformed content-length check passed | |
| http_protocol_missing_host_header_violation | 8 | Missing host header check violation | |
| dlp_ccn_jcb_masked | 8 | JCB Credit Card Number Masked | |
| http_limit_max_header_length_success | 8 | MAX header length check passed | |
| request_check_redirect_wlist_success | 8 | Redirect Whitelist passed | |
| xml_check_max_attr_name_len_success | 8 | XML Limit Name Length check passed | |
| http_protocol_head_with_content_violation | 8 | HEAD with content check violation | |
| learning_list_full | 8 | Learning list is full | |
| request_check_xss_cookie_violation | 8 | XSS Check Cookie violation | |
| evasion_check_multiple_encoding_levels_violation | 8 | Multiple Encoding Levels check violation | |
| http_protocol_body_without_content_type_success | 8 | Body without content type check passed | |
| http_protocol_allowed_versions_success | 8 | HTTP versions check passed | |
| xml_check_max_entity_decl_success | 8 | XML Limit Entity Decl check passed | |
| cookie_security_disallowed_session_set_cookies | 8 | Cookie Security - disallowed session Set-Cookies | |
| http_protocol_malformed_header_success | 8 | Malformed header check passed | |
| xml_check_sqlia_success | 8 | XML Sqlia Check passed | |
| form_consistency_success | 8 | Form Consistency passed | |
| xml_check_max_entity_depth_success | 8 | XML Limit Entity Depth check passed | |
| action_log | 8 | Log request violation | |
| request_check_xss_url_violation | 8 | XSS Check URL violation | |
| http_protocol_invalid_url_encoding_success | 8 | Invalid url encoding check passed | |
| request_check_referer_violation | 8 | Referer Check violation | |
| form_request_non_post_success | 8 | Form Method being Non Post in Request passed | |
| json_check_max_object_member_count_success | 8 | JSON Limit Object Number Count check passed | |
| dlp_ccn_visa_masked | 8 | Visa Credit Card Number Masked | |
| http_limit_max_header_name_length_success | 8 | MAX header name length check passed | |
| json_check_max_array_value_count_success | 8 | JSON Limit Array Value Count check passed | |
| xml_check_max_entity_exp_depth_success | 8 | XML Limit Entities Depth check passed | |
| http_limit_max_headers_length_success | 8 | MAX headers length check passed | |
| dlp_ccn_diners_masked | 8 | Diners Club Credit Card Number Masked | |
| policy_limit_exceeded | 8 | Policy limit exceeded | |
| dlp_ccn_success | 8 | Credit Card Number check passed | |
| http_protocol_bad_multipart_request_success | 8 | Bad multi-part request check passed | |
| soap_check_violation | 8 | Soap Check violation | |
| evasion_check_decode_unicode_chars_success | 8 | Decode Unicode Chars check passed | |
| http_limit_max_params_violation | 8 | Limit check - MAX parameters violation | |
| cookie_security_sign_limit_exceeded | 8 | Cookie Security - signing limit exceeded | |
| request_check_bot_success | 8 | Bot check passed | |
| cookie_security_encrypt_skip_rcache | 8 | Cookie Security - encrypt skipped - RAM cache | |
| brute_force_challenge_javascript_sent | 8 | JavaScript challenge sent | |
| http_limit_max_entities_violation | 8 | Max Entities violation | |
| evasion_check_apache_whitespace_success | 8 | Apache Whitespace check passed | |
| brute_force_challenge_limit_success | 8 | Lockout limit check passed | |
| http_protocol_allowed_versions_violation | 8 | HTTP versions check violation | |
| cookie_security_unrecognized_cookie_success | 8 | Cookie Security - request with unrecognized cookie | |
| action_deny_reset | 8 | Request Deny with Resets | |
| form_non_ssl_password_violation | 8 | Form Non SSL Password violation | |
| xml_check_max_elem_depth_success | 8 | XML Limit Element Depth check passed | |
| http_limit_max_headers_length_violation | 8 | MAX headers length check violation | |
| response_action_drop | 8 | Number of Dropped Responses | |
| dlp_ccn_visa_violation | 8 | Visa Credit Card Number Detected | |
| req_denied | 8 | Requests Denied | |
| http_limit_max_params_success | 8 | Limit check - MAX parameters check passed | |
| req_allowed | 8 | Requests Allowed | |
| cookie_security_add_secure_success | 8 | Cookie Security - secure flag added | |
| evasion_check_invalid_hex_encoding_violation | 8 | Invalid Hex Encoding check violation | |
| json_check_max_object_member_count_violation | 8 | JSON Limit Object Number Count violation | |
| brute_force_challenge_javascript_success | 8 | JavaScript challenge check passed | |
| request_check_command_injection_cookies_success | 8 | Command Injection Check cookies passed | |
| dlp_ccn_jcb_violation | 8 | JCB Credit Card Number Detected | |
| form_non_ssl_password_success | 8 | Form Non SSL Password check passed | |
| form_password_autocomplete_success | 8 | Form Password Autocomplete check passed | |
| action_allow | 8 | Request Action allowed | |
| http_limit_max_cookies_length_success | 8 | MAX cookies length check passed | |
| action_deny_redirect | 8 | Request Deny with Redirect | |
| http_limit_max_param_name_length_success | 8 | Limit check - MAX parameter name length check passed | |
| dlp_ccn_diners_violation | 8 | Diners Club Credit Card Number Detected | |
| http_protocol_malformed_parameter_success | 8 | Malformed parameter check passed | |
| http_protocol_invalid_url_encoding_violation | 8 | Invalid url encoding check violation | |
| xml_check_max_attr_value_len_success | 8 | XML Limit Value Length check passed | |
| request_check_url_whitelist_violation | 8 | URI White List violation | |
| request_check_xss_cookie_success | 8 | XSS Check Cookie passed | |
| request_check_command_injection_form_body_success | 8 | Command Injection Check form body arguments passed | |
| http_protocol_success | 8 | HTTP Check passed | |
| http_protocol_bad_multipart_request_violation | 8 | Bad multi-part request check violation | |
| xml_check_max_namespace_success | 8 | XML Limit Namespace check passed | |
| dlp_ccn_mastercard_masked | 8 | MasterCard Credit Card Number Masked | |
| form_check_success | 8 | Post Form Check passed | |
| action_deny_custom_response | 8 | Request Deny with custom response | |
| xml_check_sqlia_violation | 8 | XML Sqlia Check violation | |
| cookie_security_sign_violation | 8 | Cookie Security - signing violation | |
| evasion_check_decode_escaped_chars_violation | 8 | Decode Escaped Chars check violation | |
| too_many_sessions | 8 | Too many sessions consumed | |
| cookie_security_add_secure_violation | 8 | Cookie Security - secure flag violation | |
| json_check_max_array_value_count_violation | 8 | JSON Limit Array Value Count violation | |
| evasion_check_max_levels_success | 8 | Max Levels check passed | |
| http_limit_max_query_length_violation | 8 | Limit check - MAX query length violation | |
| xml_check_max_elem_name_len_violation | 8 | XML Limit Element Name Length violation | |
| http_protocol_multiple_content_length_success | 8 | Multiple content-length headers check passed | |
| regex_violation | 8 | Regular expression failure | |
| xml_check_max_attr_violation | 8 | XML Limit Attribute violation | |
| http_limit_max_header_value_length_violation | 8 | MAX header value length check violation | |
| http_limit_max_request_line_length_success | 8 | Limit check - MAX request line length check passed | |
| cookie_security_disallowed_session_cookies | 8 | Cookie Security - disallowed session cookies | |
| xml_content_check_schema_success | 8 | XML Schema passed | |
| evasion_check_high_ascii_bytes_success | 8 | High Ascii Bytes check passed | |
| http_protocol_head_with_content_success | 8 | HEAD with content check passed | |
| http_limit_max_content_length_violation | 8 | MAX content-length check violation | |
| http_protocol_missing_header_value_violation | 8 | Missing header value check violation | |
| http_limit_max_cookie_header_length_violation | 8 | MAX cookie header length violation | |
| xml_check_max_cdata_len_success | 8 | XML Limit CData Length check passed | |
| response_cloaking_filter_headers_success | 8 | Response Headers Filter check passed | |
| cookie_security_missing_cookie_success | 8 | Cookie Security - request with missing cookie | |
| http_protocol_post_without_content_violation | 8 | POST without content check violation | |
| cookie_security_persistent_cookies_signed | 8 | Cookie Security - signed persistent cookies | |
| soap_check_success | 8 | Soap Check passed | |
| request_check_redirect_wlist_violation | 8 | Redirect Whitelist violation | |
| http_limit_max_request_line_length_violation | 8 | Limit check - MAX request line length violation | |
| xml_check_max_elem_child_success | 8 | XML Limit Element Child check passed | |
| response_action_deny_custom_response | 8 | Response Deny with custom response | |
| http_limit_max_post_length_success | 8 | MAX POST length check passed | |
| request_check_url_blacklist_violation | 8 | URI Black List violation | |
| dlp_ccn_discover_violation | 8 | Discover Credit Card Number Detected | |
| http_limit_max_headers_violation | 8 | Max Headers violation | |
| xml_check_max_elem_name_len_success | 8 | XML Limit Element Name Length check passed | |
| request_check_sqlia_post_body_sanitize | 8 | SQLIA Check Post Sanitized | |
| form_csrf_tag_violation | 8 | Form CSRF tag violation | |
| form_non_masked_password_success | 8 | Form Non Masked Password check passed | |
| json_check_max_string_violation | 8 | JSON Limit String violation | |
| http_protocol_non_ssl_cookie_prefix_violation | 8 | Cookie Name Prefix check violation | |
| http_limit_max_entities_success | 8 | Max Entities check passed | |
| action_drop | 8 | Number of Dropped Requests | |
| http_protocol_missing_header_value_success | 8 | Missing header value check violation | |
| xml_check_format_violation | 8 | XML Check violation | |
| request_check_xss_post_body_success | 8 | XSS Check Post passed | |
| xml_check_max_attr_success | 8 | XML Limit Attribute check passed | |
| dlp_ccn_amex_masked | 8 | Amex Credit Card Number Masked | |
| form_password_autocomplete_violation | 8 | Form Password Autocomplete violation | |
| response_cloaking_hide_status_code_violation | 8 | Response Hide Code violation | |
| request_check_sqlia_url_success | 8 | SQLIA Check URL passed | |
| http_protocol_allowed_headers_violation | 8 | HTTP headers check violation | |
| brute_force_violation | 8 | Brute-Force checks violation | |
| brute_force_challenge_captcha_success | 8 | Captcha challenge check passed | |
| brute_force_response_headers_triggered | 8 | Brute Force Response Headers Triggered | |
| http_limit_max_param_name_length_violation | 8 | Limit check - MAX parameter name length violation | |
| response_action_deny_redirect | 8 | Response Deny with Redirect | |
| cookie_security_add_samesite_success | 8 | Cookie Security - samesite attribute added successfully | |
| evasion_check_remove_comments_violation | 8 | Remove Comments check violation | |
| request_check_command_injection_form_body_violation | 8 | Command Injection Check form body arguments violation | |
| evasion_check_decode_entities_violation | 8 | Decode Entities check violation | |
| request_check_session_check_violation | 8 | Session Check violation | |
| form_non_ssl_success | 8 | Form Non SSL check passed | |
| cookie_security_session_cookies_signed | 8 | Cookie Security - signed session cookies | |
| xml_check_max_entity_depth_violation | 8 | XML Limit Entity Depth violation | |
| xml_content_check_wsdl_violation | 8 | WSDL violation | |
| json_check_max_depth_success | 8 | JSON Limit Depth check passed | |
| http_protocol_get_with_content_violation | 8 | GET with content check violation | |
| cookie_security_allowed_session_set_cookies | 8 | Cookie Security - disallowed session Set-Cookies | |
| xml_check_namespace_uri_len_success | 8 | XML Limit Namespace URI Length check passed | |
| evasion_check_multiple_slashes_success | 8 | Multiple Slashes check passed | |
| http_limit_max_params_length_violation | 8 | Limit check - MAX parameters total length violation | |
| http_protocol_violation | 8 | HTTP Check violation | |
| csp_header_inserted | 8 | CSP header Inserted | |
| form_non_ssl_violation | 8 | Form Non SSL violation | |
| http_protocol_host_header_with_ip_success | 8 | Host header with IP check passed | |
| sessions_freed | 8 | Sessions freed | |
| out_of_sessions | 8 | Out of sessions | |
| dlp_ssn_violation | 8 | Social Security Number Mask violation | |
| form_response_non_post_success | 8 | Response form method was POST | |
| sessions_alloc | 8 | Sessions allocated | |
| request_check_command_injection_headers_violation | 8 | Command Injection Check headers violation | |
| form_response_non_post_sanitize | 8 | Changed response form method to POST | |
| http_protocol_non_ssl_cookie_prefix_success | 8 | Cookie Name Prefix check passed | |
| request_check_referer_success | 8 | Referer Check passed | |
| cookie_security_missing_cookie_violation | 8 | Cookie Security - missing cookie violation | |
| response_action_deny_403 | 8 | Response Deny with 403 | |
| http_protocol_malformed_content_length_violation | 8 | Malformed content-length check violation | |
| cookie_security_persistent_cookies_encrypted | 8 | Cookie Security - encrypted persistent cookies | |
| evasion_check_decode_unicode_chars_violation | 8 | Decode Unicode Chars check violation | |
| evasion_check_invalid_hex_encoding_success | 8 | Invalid Hex Encoding check passed | |
| evasion_check_apache_whitespace_violation | 8 | Apache Whitespace check violation | |
| response_action_deny_200 | 8 | Response Deny with 200 | |
| cookie_security_signature_check_success | 8 | Cookie Security - signature check successful | |
| brute_force_challenge_limit_violation | 8 | Lockout limit violation | |
| response_action_learn | 8 | Response Learning Updates | |
| total_req | 8 | Total Requests | |
| http_limit_max_cookie_value_length_success | 8 | MAX cookie value length check passed | |
| http_protocol_multiple_content_length_violation | 8 | Multiple content-length headers check violation | |
| action_deny_403 | 8 | Request Deny with 403 | |
| form_csrf_tag_success | 8 | Form CSRF tag passed | |
| http_protocol_post_with_0_content_success | 8 | POST with 0 content check passed | |
| cookie_security_encrypt_success | 8 | Cookie Security - encrypt successful | |
| request_check_xss_cookie_sanitize | 8 | XSS Check Cookie Sanitized | |
| cookie_security_cookie_policy_success | 8 | Cookie Security - cookie policy passed | |
| xml_content_check_wsdl_success | 8 | WSDL passed | |
| cookie_security_disallowed_persistent_set_cookies | 8 | Cookie Security - disallowed persistent Set-Cookies | |
| cookie_security_decrypt_violation | 8 | Cookie Security - decrypt violation | |
| http_protocol_get_with_content_success | 8 | GET with content check passed | |
| request_check_redirect_wlist_learn | 8 | Redirect Whitelist Learn | |
| http_limit_max_header_value_length_success | 8 | MAX header value length check passed | |
| evasion_check_remove_comments_success | 8 | Remove Comments check passed | |
| brute_force_challenge_javascript_violation | 8 | JavaScript challenge violation | |
| evasion_check_multiple_encoding_levels_success | 8 | Multiple Encoding Levels check passed | |
| cookie_security_allowed_persistent_cookies | 8 | Cookie Security - allowed persistent cookies | |
| http_protocol_allowed_method_check_success | 8 | HTTP Method Check passed | |
| request_check_url_list_violation | 8 | URL Check violation | |
| cookie_security_add_samesite_violation | 8 | Cookie Security - samesite attribute violation | |
| http_limit_max_query_length_success | 8 | Limit check - MAX query length check passed | |
| cookie_security_add_http_only_success | 8 | Cookie Security - http-only flag added | |
| dlp_ccn_amex_violation | 8 | Amex Credit Card Number Detected | |
| json_check_max_string_success | 8 | JSON Limit String check passed | |
| http_limit_max_cookie_value_length_violation | 8 | MAX cookie value length violation | |
| brute_force_challenge_captcha_violation | 8 | Captcha challenge violation | |
| dlp_pcre_success | 8 | PCRE Mask check passed | |
| xml_check_max_entity_exp_success | 8 | XML Limit Entity Decl check passed | |
| cookie_security_session_cookies_encrypted | 8 | Cookie Security - encrypted session cookies | |
| http_limit_max_cookies_violation | 8 | Max Cookies violation |
stats data¶
| Counter | Size | Description | |
|---|---|---|---|
| curr_req | 8 | Current requests | |
| curr_req_rate | 8 | Current request rate | |
| dns_filter_type_aaaa_drop | 8 | DNS Filter Type AAAA Drop | |
| dns_rpz_trigger_qname | 8 | DNS RPZ Trigger Qname IP | |
| dns_rpz_trigger_client_ip | 8 | DNS RPZ Trigger Client IP | |
| dns_filter_type_a_drop | 8 | DNS Filter Type A Drop | |
| total_rev_pkts_out | 8 | Packets processed in reverse direction (outbound) | |
| curr_ssl_conn | 8 | Current SSL connections | |
| total_fwd_bytes_out | 8 | Bytes processed in forward direction (outbound) | |
| loc_deny | 8 | Geo-location Deny count | |
| dns_filter_type_mx_drop | 8 | DNS Filter Type MX Drop | |
| dns_filter_class_internet_drop | 8 | DNS Filter Class INTERNET Drop | |
| curr_resp | 8 | Current response | |
| dns_filter_type_srv_drop | 8 | DNS Filter Type SRV Drop | |
| dns_filter_type_soa_drop | 8 | DNS Filter Type SOA Drop | |
| total_fwd_bytes | 8 | Bytes processed in forward direction | |
| curr_resp_rate | 8 | Current response rate | |
| backend-time-to-last-byte | 8 | Backend Time from Request to Response Last Byte | |
| dns_filter_class_any_drop | 8 | DNS Filter Class ANY Drop | |
| dnsrrl_total_slipped | 8 | DNS Response-Rate-Limiting Total Responses Slipped | |
| dns_filter_type_others_drop | 8 | DNS Filter Type OTHERS Drop | |
| total_resp_succ | 8 | Total successful responses | |
| dnsrrl_bad_fqdn | 8 | DNS Response-Rate-Limiting Bad FQDN | |
| dns_rpz_action_drop | 8 | DNS RPZ Action Drop | |
| compression_miss | 2 | Number of requests NOT compressed | |
| loc_permit | 8 | Geo-location Permit count | |
| loc_conn | 8 | Geo-location Connection count | |
| fastest_rsp_time | 8 | Fastest response time | |
| total_fwd_pkts | 8 | Packets processed in forward direction | |
| ip_only_lb_fwd_bytes | 8 | IP-Only-LB Bytes processed in forward direction | |
| dns_rpz_trigger_resp_ip | 8 | DNS RPZ Trigger Response IP | |
| dnsrrl_total_allowed | 8 | DNS Response-Rate-Limiting Total Responses Allowed | |
| total_tcp_conn | 8 | Total TCP connections established | |
| total_mf_dns_pkts | 2 | Total MF DNS packets | |
| ip_only_lb_rev_bytes | 8 | IP-Only-LB Bytes processed in reverse direction | |
| dns_rpz_action_nodata | 8 | DNS RPZ Action NODATA | |
| dns_filter_class_chaos_drop | 8 | DNS Filter Class CHAOS Drop | |
| dns_filter_type_ptr_drop | 8 | DNS Filter Type PTR Drop | |
| compression_miss_template_exclusion | 2 | Compression miss template exclusion | |
| in-latency | 8 | Request Latency at Thunder | |
| total_dns_pkts | 2 | Total DNS packets processed | |
| dns_rpz_action_tcp_only | 8 | DNS RPZ Action TCP Only | |
| out-latency | 8 | Response Latency at Thunder | |
| peak_conn | 8 | Peak connections | |
| total_rev_bytes_out | 8 | Bytes processed in reverse direction (outbound) | |
| ip_only_lb_fwd_pkts | 8 | IP-Only-LB Packets processed in forward direction | |
| compression_bytes_after | 2 | Data out of compression engine | |
| dns_rpz_action_local_data | 8 | DNS RPZ Action Local Data | |
| total_req | 8 | Total requests | |
| dnsrrl_total_dropped | 8 | DNS Response-Rate-Limiting Total Responses Dropped | |
| compression_bytes_before | 2 | Data into compression engine | |
| dns_filter_class_hesiod_drop | 8 | DNS Filter Class HESIOD Drop | |
| backend-time-to-first-byte | 8 | Backend Time from Request to Response First Byte | |
| last_rsp_time | 8 | Last response time | |
| curr_conn | 8 | Current established connections | |
| throughput-bits-per-sec | 8 | Throughput in bits/sec | |
| dns_rpz_trigger_ns_ip | 8 | DNS RPZ Trigger NS IP | |
| dns_rpz_action_nxdomain | 8 | DNS RPZ Action NXDOMAIN | |
| total_fwd_pkts_out | 8 | Packets processed in forward direction (outbound) | |
| total_rev_bytes | 8 | Bytes processed in reverse direction | |
| dns_filter_class_none_drop | 8 | DNS Filter Class NONE Drop | |
| total_dns_filter_type_drop | 8 | Total DNS Filter Type Drop | |
| curr_conn_rate | 8 | Current connection rate | |
| compression_miss_no_client | 2 | Compression miss no client | |
| es_total_failure_actions | 2 | Total failure actions | |
| ip_only_lb_rev_pkts | 8 | IP-Only-LB Packets processed in reverse direction | |
| dns_filter_class_others_drop | 8 | DNS Filter Class OTHERS Drop | |
| total_ssl_conn | 8 | Total SSL connections | |
| total_conn | 8 | Total connections established | |
| total_rev_pkts | 8 | Packets processed in reverse direction | |
| total_l7_conn | 8 | Total L7 connections established | |
| dns_filter_type_txt_drop | 8 | DNS Filter Type TXT Drop | |
| total_dns_filter_class_drop | 8 | Total DNS Filter Class Drop | |
| total_req_succ | 8 | Total successful requests | |
| dynamic-memory | 8 | dynamic memory (bytes) used by the vport(alloc-free) | |
| dns_filter_type_cname_drop | 8 | DNS Filter Type CNAME Drop | |
| total_resp | 8 | Total response | |
| dns_rpz_action_pass_thru | 8 | DNS RPZ Action Pass Through | |
| dns_filter_type_ns_drop | 8 | DNS Filter Type NS Drop | |
| dns_filter_type_any_drop | 8 | DNS Filter Type Any Drop | |
| total_l4_conn | 8 | Total L4 connections established | |
| slowest_rsp_time | 8 | Slowest response time | |
| dns_rpz_trigger_ns_name | 8 | DNS RPZ Trigger NS Name | |
| compression_hit | 2 | Number of requests compressed |
operational data¶
| Counter | Size | Description | |
|---|---|---|---|
| http_host_hits | flag | http_host_hits | |
| http-hits-list | http-hits-list | ||
| clear_curr_conn | flag | clear_curr_conn | |
| cpu-count | number | cpu-count | |
| loc_last | string | loc_last | |
| loc_list | string | loc_list | |
| int_curr_conn | number | int_curr_conn | |
| http_vport | flag | http_vport | |
| http_url_hits | flag | http_url_hits | |
| loc_max_depth | number | loc_max_depth | |
| level_str | string | level_str | |
| loc_error | number | loc_error | |
| state | enum | Output contains one of the following values: - All Up, Functional Up, Down, Disb, Unkn | |
| geo_location | string | geo_location | |
| http-vport-cpu-list | http-vport-cpu-list | ||
| real_curr_conn | number | real_curr_conn | |
| loc_success | number | loc_success | |
| curr_conn_overflow | number | curr_conn_overflow | |
| group_id | number | group_id | |
| loc_override | number | loc_override |