ddos template ssl-l4 ssl-handshake-policy¶

SSL Handshake Policy Configuration

ssl-handshake-policy Specification¶

Parameter Value

Type Configuration Resource

Element Name ssl-handshake-policy

Element URI /axapi/v3/ddos/template/ssl-l4/{ssl-l4-tmpl-name}/ssl-handshake-policy

Element Attributes ssl-handshake-policy_attributes

Partition Visibility shared

Schema ssl-handshake-policy schema

Operations Allowed:

Operation	Method	URI	Payload
Create Object	POST	/axapi/v3/ddos/template/ssl-l4/{ssl-l4-tmpl-name}/ssl-handshake-policy	ssl-handshake-policy attributes
POST /axapi/v3/ddos/template/ssl-l4/a/ssl-handshake-policy Payload: { "ssl-handshake-policy": { "action": "drop" } }
Get Object	GET	/axapi/v3/ddos/template/ssl-l4/{ssl-l4-tmpl-name}/ssl-handshake-policy	ssl-handshake-policy attributes
GET /axapi/v3/ddos/template/ssl-l4/a/ssl-handshake-policy Reponse: { "ssl-handshake-policy": { "action": "drop", "uuid": "4b32e3bc-6252-11ef-8fce-001fa0077810", "a10-url": "/axapi/v3/ddos/template/ssl-l4/a/ssl-handshake-policy" } }
Modify Object	POST	/axapi/v3/ddos/template/ssl-l4/{ssl-l4-tmpl-name}/ssl-handshake-policy	ssl-handshake-policy attributes
Replace Object	PUT	/axapi/v3/ddos/template/ssl-l4/{ssl-l4-tmpl-name}/ssl-handshake-policy	ssl-handshake-policy attributes
PUT /axapi/v3/ddos/template/ssl-l4/a/ssl-handshake-policy Payload: { "ssl-handshake-policy": { "action": "reset" } }
Delete Object	DELETE	/axapi/v3/ddos/template/ssl-l4/{ssl-l4-tmpl-name}/ssl-handshake-policy	ssl-handshake-policy attributes
DELETE /axapi/v3/ddos/template/ssl-l4/a/ssl-handshake-policy Reponse: { "response": { "status": "OK" } }

ssl-handshake-policy attributes¶

action

Description ‘drop’: Drop packets (Default); ‘reset’: Reset client connection; ‘blacklist-src’: Blacklist source IP;

Type: string

Supported Values: drop, reset, blacklist-src

Mutual Exclusion: action and ssl-handshake-policy-action-list-name are mutually exclusive

cipher-suites-limit

Description Set cipher suites limit

Type: number

Range: 1-600

client-extensions-limit

Description Set client extensions limit

Type: number

Range: 1-600

clienthello-to-appdata-timeout

Description Set maximum timeout seconds from ClientHello to Application-Data

Type: number

Range: 1-600

finished-to-appdata-timeout

Description Set maximum timeout seconds from Handshake finished to Application-Data

Type: number

Range: 1-600

src-handshaking-conn-limit

Description Set handshaking connection limit

Type: number

Range: 1-16000000

ssl-handshake-policy-action-list-name

Description Configure action-list to take

Type: string

Format: string-rlx

Maximum Length: 63 characters

Maximum Length: 1 characters

Mutual Exclusion: ssl-handshake-policy-action-list-name and action are mutually exclusive

Reference Object: /axapi/v3/ddos/action-list

uuid

Description uuid of the object

Type: string

Maximum Length: 64 characters

Maximum Length: 1 characters