member:threatprotection : Member threat protection object.

This object provides information about the member threat protection settings.

Object Reference

References to member:threatprotection are object references.

The name part of the userprofile object reference has the following components:

  • The name of a Grid member.
Example:
member:threatprotection/YXRwLm1lbWJlcl9hdHBfcHJvcGVydGllcyQw: infoblox.localdomain

Restrictions

The object does not support the following operations:

  • Create (insert)
  • Delete
  • Scheduling
  • CSV export

The object cannot be managed on Cloud Platform members.

Fields

These fields are actual members of the object; thus, they can be requested by using _return_fields, if the fields are readable.

comment

comment

The human readable comment for member threat protection properties.

Type

String.

Search

The field is available for search via

  • ‘:=’ (case insensitive search)
  • ‘=’ (exact equality)
  • ‘~=’ (regular expression)

Notes

The comment cannot be updated.

comment cannot be written.

current_ruleset

current_ruleset

The ruleset used for threat protection.

Type

String.

Create

The default value is undefined.

Search

The field is available for search via

  • ‘=’ (exact equality)

Notes

current_ruleset is associated with the field use_current_ruleset (see use flag).

disable_multiple_dns_tcp_request

disable_multiple_dns_tcp_request

Determines if multiple BIND responses via TCP connection is enabled or not.

Type

Bool.

Create

The default value is True.

Search

The field is not available for search.

Notes

disable_multiple_dns_tcp_request is associated with the field use_disable_multiple_dns_tcp_request (see use flag).

enable_accel_resp_before_threat_protection

enable_accel_resp_before_threat_protection

Determines if DNS responses are sent from acceleration cache before applying Threat Protection rules. Recommended for better performance when using DNS Cache Acceleration.

Type

Bool.

Create

The default value is True.

Search

The field is not available for search.

Notes

enable_accel_resp_before_threat_protection is associated with the field use_enable_accel_resp_before_threat_protection (see use flag).

enable_nat_rules

enable_nat_rules

Determines if NAT (Network Address Translation) mapping for threat protection is enabled or not.

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

Notes

enable_nat_rules is associated with the field use_enable_nat_rules (see use flag).

enable_service

enable_service

Determines if the Threat protection service is enabled or not.

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

events_per_second_per_rule

events_per_second_per_rule

The number of events logged per second per rule.

Type

Unsigned integer.

Create

The default value is undefined.

Search

The field is not available for search.

Notes

events_per_second_per_rule is associated with the field use_events_per_second_per_rule (see use flag).

hardware_model

hardware_model

The hardware model of the member.

Type

String.

Search

The field is available for search via

  • ‘:=’ (case insensitive search)
  • ‘=’ (exact equality)
  • ‘~=’ (regular expression)

Notes

The hardware_model cannot be updated.

hardware_model cannot be written.

hardware_type

hardware_type

The hardware type of the member.

Type

String.

Search

The field is available for search via

  • ‘:=’ (case insensitive search)
  • ‘=’ (exact equality)
  • ‘~=’ (regular expression)

Notes

The hardware_type cannot be updated.

hardware_type cannot be written.

host_name

host_name

A Grid member name.

Type

String.

Search

The field is available for search via

  • ‘=’ (exact equality)

Notes

The host_name cannot be updated.

host_name cannot be written.

ipv4address

ipv4address

The IPv4 address of member threat protection service.

Type

String.

Search

The field is available for search via

  • ‘=’ (exact equality)

Notes

The ipv4address cannot be updated.

ipv4address cannot be written.

ipv6address

ipv6address

The IPv6 address of member threat protection service.

Type

String.

Search

The field is available for search via

  • ‘=’ (exact equality)

Notes

The ipv6address cannot be updated.

ipv6address cannot be written.

nat_rules

nat_rules

The list of NAT rules.

Type

A/An NAT Threat Protection Rule struct array.

Create

The default value is:

empty

Search

The field is not available for search.

outbound_settings

outbound_settings

Outbound settings for ATP events.

Type

A/An Outbound settings for ATP events struct.

Create

The default value is:

{ 'enable_query_fqdn': False, 'query_fqdn_limit': 2}

Search

The field is not available for search.

Notes

outbound_settings is associated with the field use_outbound_settings (see use flag).

profile

profile

The Threat Protection profile associated with the member.

Type

String.

Create

The default value is empty.

Search

The field is available for search via

  • ‘=’ (exact equality)

use_current_ruleset

use_current_ruleset

Use flag for: current_ruleset

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

use_disable_multiple_dns_tcp_request

use_disable_multiple_dns_tcp_request

Use flag for: disable_multiple_dns_tcp_request

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

use_enable_accel_resp_before_threat_protection

use_enable_accel_resp_before_threat_protection

Use flag for: enable_accel_resp_before_threat_protection

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

use_enable_nat_rules

use_enable_nat_rules

Use flag for: enable_nat_rules

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

use_events_per_second_per_rule

use_events_per_second_per_rule

Use flag for: events_per_second_per_rule

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

use_outbound_settings

use_outbound_settings

Use flag for: outbound_settings

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

Fields List

Field Type Req R/O Base Search
comment String N Y N : = ~
current_ruleset String N N N =
disable_multiple_dns_tcp_request Bool N N N N/A
enable_accel_resp_before_threat_protection Bool N N N N/A
enable_nat_rules Bool N N N N/A
enable_service Bool N N N N/A
events_per_second_per_rule Unsigned int N N N N/A
hardware_model String N Y N : = ~
hardware_type String N Y N : = ~
host_name String N Y N =
ipv4address String N Y N =
ipv6address String N Y N =
nat_rules [struct] N N N N/A
outbound_settings struct N N N N/A
profile String N N N =
use_current_ruleset Bool N N N N/A
use_disable_multiple_dns_tcp_request Bool N N N N/A
use_enable_accel_resp_before_threat_protection Bool N N N N/A
use_enable_nat_rules Bool N N N N/A
use_events_per_second_per_rule Bool N N N N/A
use_outbound_settings Bool N N N N/A