The Threat Protection profile object facilitates configuring groups of Threat Protection members that have similar traffic properties. A member can be either associated with a Threat Protection profile or inherit the ruleset from the Grid or override the ruleset individually at the member level.
References to threatprotection:profile are object references.
The name part of the Threat Protection profile object reference has the following components:
- The name of the Threat Protection profile.
The object does not support the following operations:
The object cannot be managed on Cloud Platform members.
These fields are actual members of the object; thus, they can be requested by using _return_fields, if the fields are readable.
The basic version of the object contains the field(s): comment, name.
The following fields are required to create this object:
| Field | Notes |
|---|---|
| name |
The comment for the Threat Protection profile.
Type
String.
Create
The default value is empty.
Search
The field is available for search via
Notes
The comment is part of the base object.
The current Threat Protection profile ruleset.
Type
String.
Create
The default value is empty.
Search
The field is available for search via
Notes
current_ruleset is associated with the field use_current_ruleset (see use flag).
Determines if multiple BIND responses via TCP connection are disabled.
Type
Bool.
Create
The default value is True.
Search
The field is available for search via
Notes
disable_multiple_dns_tcp_request is associated with the field use_disable_multiple_dns_tcp_request (see use flag).
The number of events logged per second per rule.
Type
Unsigned integer.
Create
The default value is empty.
Search
The field is available for search via
Notes
events_per_second_per_rule is associated with the field use_events_per_second_per_rule (see use flag).
Extensible attributes associated with the object.
For valid values for extensible attributes, see the following information.
Type
Extensible attributes.
This field allows +/- to be specified as part of the field name when updating the object, see the following information.
Create
The default value is empty.
Search
For how to search extensible attributes, see the following information.
The list of members that are associated with the profile.
Type
String array.
Create
The default value is empty.
Search
The field is not available for search.
The name of the Threat Protection profile.
Type
String.
Values with leading or trailing white space are not valid for this field.
Create
The field is required on creation.
Search
The field is available for search via
Notes
The name is part of the base object.
The source member. It can be used only during the create operation for cloning a profile from an existing member.
Type
String.
Create
The default value is undefined.
Search
The field is not available for search.
Notes
The source_member cannot be updated.
source_member is not readable.
The source profile. It can be used only during the create operation for cloning a profile from an existing profile.
Type
String.
Create
The default value is undefined.
Search
The field is not available for search.
Notes
The source_profile cannot be updated.
source_profile is not readable.
Use flag for: current_ruleset
Type
Bool.
Create
The default value is False.
Search
The field is not available for search.
| Field | Type | Req | R/O | Base | Search |
|---|---|---|---|---|---|
| comment | String | N | N | Y | : = ~ |
| current_ruleset | String | N | N | N | = |
| disable_multiple_dns_tcp_request | Bool | N | N | N | = |
| events_per_second_per_rule | Unsigned int | N | N | N | < = > |
| extattrs | Extattr | N | N | N | ext |
| members | [String] | N | N | N | N/A |
| name | String | Y | N | Y | : = ~ |
| source_member | String | N | N | N | N/A |
| source_profile | String | N | N | N | N/A |
| use_current_ruleset | Bool | N | N | N | N/A |
| use_disable_multiple_dns_tcp_request | Bool | N | N | N | N/A |
| use_events_per_second_per_rule | Bool | N | N | N | N/A |
