Create Firewall Rule
In the Sense Defence firewall, each rule consists of an expression and an action. If an incoming HTTP request aligns with a rule's expression, Sense Defence will execute the designated action.
Setting Up a Firewall Rule in Sense Defence
Starting the Process:
- Go to Application > Firewall.
- Select the site name from the drop-down list
- Click the 'Create Firewall Rule' button.
Configuring the Rule:
- On the displayed page, enter a descriptive name in the Rule name input.
In the When incoming requests match section:
- Choose an HTTP property from the Field drop-down (see Fields reference for more).
- The chosen property will be compared against the Value you specify.
- Pick a comparison operator from the Operator drop-down.
For the Value section:
- If it’s an enumeration, a drop-down list appears; otherwise, you'll get a text input.
- To add another sub-expression, click 'Add New' or 'AND'.
- Determine the action for your rule from the Action drop-down.
Deploying the Rule:
- Click Save to save and activate your rule. There's also an option to disable the rule post-deployment.
Modifying Rules:
- To edit, click Edit (three dots) on the right of your desired rule. Adjust as needed in the panel that opens.
Activating/Deactivating Rules:
- Use the associated toggle switch to enable or disable a specific firewall rule.
Removing Rules:
- Besides the rule you wish to delete, choose Delete from the three dots menu.
- Confirm by selecting Delete in the dialogue box.
Ordering Rules:
- By default, Sense Defence assesses rules based on their sequence in the list. When this list order is active, simply drag and drop rules into your desired order using the arrow icons.
Remember: Rule sequence matters, as rules are evaluated based on their position. Adjusting them can be done with the up/down arrows when list ordering is enabled.
Related Articles
Sense Defence Firewall Rule Overview
With Sense Defence Firewall Rules, you can establish guidelines to examine incoming data traffic. Depending on the rule, you can then block, challenge, record, or permit particular requests. Key Features: Guided Protection: Take advantage of the ...What is a Web Application Firewall?
A web application firewall (WAF) is a security system that monitors, filters, and blocks malicious traffic to and from a web application. Its purpose is to protect web applications from vulnerabilities such as cross-site scripting (XSS), SQL ...Sense Defence OWASP Core Rule Early Blocking
OWASP released early blocking feature for its core rules sets in Sprint 2022 and Sense defence adapted the changes immediately on its core rules selections. This feature is available for all users - including our community edition customers at free ...API Key Management
Sense Defence Enterprise provides a RESTful HTTP API, covering all of the Server's functionality, therefore allowing complete usage of the system without the internal UI. Clients can use this API from other software or from the command line (via ...Sense Defence DNS Records
Once your site is successfully integrated with Sense Defence, it becomes essential to adjust your website's DNS records. By doing so, you will direct your site's traffic through the Sense Defence anycast network, ensuring optimal protection and ...