ddos dst zone port-range virtualhosts¶
Configure virtualhost based mitigation for SSL services
virtualhosts Specification¶
Parameter Value Type Configuration Resource Element Name virtualhosts Element URI /axapi/v3/ddos/dst/zone/{zone-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/virtualhosts Element Attributes virtualhosts_attributes Partition Visibility shared Schema virtualhosts schema
Operations Allowed:
Operation | Method | URI | Payload | |
---|---|---|---|---|
Create Object | POST | /axapi/v3/ddos/dst/zone/{zone-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/virtualhosts | ||
Get Object | GET | /axapi/v3/ddos/dst/zone/{zone-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/virtualhosts | ||
Modify Object | POST | /axapi/v3/ddos/dst/zone/{zone-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/virtualhosts | ||
Replace Object | PUT | /axapi/v3/ddos/dst/zone/{zone-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/virtualhosts | ||
Delete Object | DELETE | /axapi/v3/ddos/dst/zone/{zone-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/virtualhosts |
virtualhosts attributes¶
source-tracking-all
Description enables creation of source entries for all virtualhosts
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
vhosts-config
Description ‘configuration’: configure virtualhost based mitigation for ssl services;
Type: string
Supported Values: configuration
virtualhost-list
virtualhost-list¶
Specification Value Type list Block object keys deny
Description Blacklist and Drop all incoming packets for protocol
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
glid-cfg
Description: glid-cfg is a JSON Block. Please see below for virtualhost-list_glid-cfg
Type: Object
level-list
servername
Type: Listservername-list
Description Class List to match servername (Class List Name)
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
servername-match-any
Description Match when there is no SNI or other servernames are not matched
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
source-tracking
Description ‘follow’: enable creation of source entries when source-tracking-all is enabled (default); ‘enable’: enable creation of source entries on this virtualhost; ‘disable’: disable creation of source entries on this virtualhost;
Type: string
Supported Values: follow, enable, disable
Default: follow
user-tag
Description Customized tag
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
vhost
Description name for virtualhost
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
virtualhost-list_servername¶
Specification Value Type list Block object keys host-match-string
Description SNI String
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
match-type
Description ‘contains’: match servername extension when contains this string; ‘ends-with’: match servername extension when ends with this string; ‘equals’: match servername extension when equals this string; ‘starts-with’: match servername extension when starts with this string;
Type: string
Supported Values: contains, ends-with, equals, starts-with
virtualhost-list_glid-cfg¶
Specification Value Type object glid
Description Global limit ID
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/glid
glid-action
Description ‘drop’: Drop packets for glid exceed (Default); ‘ignore’: Do nothing for glid exceed;
Type: string
Supported Values: drop, ignore
virtualhost-list_level-list¶
Specification Value Type list Block object keys glid-action
Description ‘drop’: Drop packets for glid exceed (Default); ‘blacklist-src’: Blacklist-src for glid exceed; ‘ignore’: Do nothing for glid exceed;
Type: string
Supported Values: drop, blacklist-src, ignore
level-num
Description ‘0’: Default policy level;
Type: string
Supported Values: 0
src-default-glid
Description Global limit ID
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Reference Object: /axapi/v3/glid
user-tag
Description Customized tag
Type: string
Format: string-rlx
Maximum Length: 127 characters
Maximum Length: 1 characters
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
zone-template
Description: zone-template is a JSON Block. Please see below for virtualhost-list_level-list_zone-template
Type: Object
virtualhost-list_level-list_zone-template¶
Specification Value Type object ssl-l4
Description DDOS ssl-l4 template
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
tcp
Description DDOS tcp template
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters