Walter.Web.FireWall
RulesConfig Class Members
Properties  Methods 


Walter.Web.FireWall Assembly > Walter.Web.FireWall.Configurations Namespace : RulesConfig Class

The following tables list the members exposed by RulesConfig.

Public Properties
 NameDescription
Public PropertyAllowAddhockAccess If true allow the download of protected resources without having been used on a page, normally indicates a developer loading the resource  
Public PropertyAllowLocalViolations AllowRaiseIncident violations if the IP address is a IP address of this server  
Public PropertyAllowNonAspNetRequests Gets or sets the times you would like to allow non ASP net requests and redirect it to the home page or the special redirect url for.  
Public PropertyAllowNonAspNetRequestsIn Gets or sets the timespan for non ASP net requests will be measured in.  
Public PropertyAllowPenetrationAttempts Gets or sets the times you would like to allow Penetration probing and redirect it to the home page or the special redirect url for.  
Public PropertyAllowPenetrationAttemptsIn Gets or sets the timespan for non ASP net requests will be measured in.  
Public PropertyAllowUsersByDefault Defines the user group that would be granted access to endpoints. By default any user will be allowed except those as identified as being malicious.  
Public PropertyAllowWhiteListing Indicates if white-listing is allowed regardless of the configuration.  
Public PropertyAlwaysOffOnStaticFilesWill by default, disable the firewall from applying rules to all physical/ static files.  
Public PropertyBlacklistLevelHoneyPotPortAccess Gets or sets the blacklist level for when detecting when any of the honey pot ports is being access.  
Public PropertyBlockedPatternsThe blocking patterns that are used for rejecting penetration attempts  
Public PropertyBlockHoneyPotUsers Block users with HoneyPot access  
Public PropertyBlockNonAspNetRequestsFor Gets or sets the block duration for non ASP net requests.  
Public PropertyBlockPenetrationAttemptsFor Gets or sets the block duration for non ASP net requests.  
Public PropertyBlockReplay If true, the default it will blocks replay attempts  
Public PropertyBlockRequest Default value for how to deal with blocking request on endpoints that have no rules configured by use of attribute annotations.  
Public PropertyBlockTorRequests Gets or sets a value indicating whether to block tor requests.  
Public PropertyBlockUserAgentsConsideredMalicious Block requests from user Bots and Browser that have been flagged as "ConsideredMalicious"  
Public Propertystatic (Shared in Visual Basic)Default Default configuration  
Public PropertyDefaultInternetServiceProviderReputation the Default trust level a Internet service provider must have for the UTL to be served  
Public PropertyGuardActionEventId Gets or sets the guard action event identifier.  
Public PropertyGuardActionLogLevel Gets or sets the guard action log level.  
Public PropertyHeaders headers configuration in regards to rules  
Public PropertyHoneyPotListners Honey-pot listener configurations monitoring non HTTP requests  
Public PropertyIgnoreRequestsThatAreNotDiscovered Gets a value indicating whether to ignore requests that are not discovered or not listed in [DomainKey].DiscoveRrouts.json.  
Public PropertyIgnoreRobotsTxt Ignore Robots.txt rules  
Public PropertyIncidentEventId Gets or sets the incident event identifier.  
Public PropertyIncidentLogLevel Gets or sets the incident log level.  
Public PropertyLoadEndpointConfigurationFromDisk Gets or sets a value indicating whether to load endpoint configuration from disk.  
Public PropertyMonitorCommunicationsNotInPorts If set to a set of values, say the firewall will notify if communication outside of the noted ports occurred by any DLL in the solution. You can access this throe the firewall's interface IFireWall.IregularNetworkCommunications  
Public PropertyNoValidate Rules to disable at a application level  
Public PropertyPhysicalFileWallExcludeReasonsReasons that will cause the disk logger to not write block rules to disk file for physical firewall integration  
Public PropertyPropagateExpiredRulesEveryMinutes Gets or sets the interval used to propagate expired rules in minutes.  
Public PropertyRedirectAllRequestsOnDiskManipulation If set, the firewall will redirect all requests to the indicated URI.  
Public PropertyRedirectBrowserDeveloperToolsUsersTo Gets or sets the redirect browser when users are using the browsers developer tools. set to Null or String.Empty to disable  
Public PropertyRedirectNonAspNetRequestsToGet or set the redirect URL for all non ASP net requests if the AllowNonAspNetRequests frequency in AllowNonAspNetRequestsIn has not been violated.  
Public PropertyRedirectPenetrationAttemptsToGet or set the redirect URL for penetration attempts if the AllowPenetrationAttempts frequency in AllowPenetrationAttemptsIn has not been violated.  
Public PropertyRedirectTorRequestsTo Gets or sets the redirect when a Tor requests is detected.  
Public PropertyRedirectUrlPhishingTo Gets or sets the redirect URL when phishing is detected, this might be a old link or some one manually types a link that does not exists.  
Public PropertyRejectUsersByDefault Define the user groups that would get rejected by default. If nothing is specified then the default type that will always get rejected is any user group identified as malicious  
Public PropertyRules Access the rules that are defined  
Public PropertyStopTestingForViolationsOnFirstViolation Indicate to test for all violations to collect more malicious activity, of to save CPU time and cancel evaluating rules after the first incident.  
Public PropertyTerminateApplicationOnDiskManipulation If set to true the firewall will no longer serve requests  
Public PropertyTolerateMaximumViolations Gets or sets the tolerate maximum violations allowed in the TolerateMaximumViolationsIn timespan settings (default 1 incidents in 1 minute).  
Public PropertyTolerateMaximumViolationsIn Gets or sets the tolerate maximum violations in a given Timespan, the longer the time the more restrictive and the more likely a user will get rejected.  
Public PropertyTolerateWrongProtocolMethod Gets or sets a value indicating whether to tolerate wrong protocol method, meaning a post when expecting a get, this usually indicates a bug in development or a scripted attack in production.  
Public PropertyTrustedCrossSiteDomainsA list of trusted domains in that are picked up by the CrossSite when assuming access to a endpoint is to be limited.  
Public PropertyUses The value is set by the runtime and is used in reporting indicating the level of protection that is enabled.  
Public PropertyViolationsExpireAfter Will tell the violation to expire after a given time, the default is 20 minutes. Use annotations to control firewall blocking rules  
Top
Public Methods
 NameDescription
Public MethodAddTrustedCrossSiteDomains The URLs to add for domains that are trusted  
Public MethodBlackList Black list= do not allow a rule to go unnoticed  
Public MethodIsWhiteListed Test if the page is WhiteListed based on a rule  
Public MethodWhiteList White list= allow a rule to happen  
Top
Extension Methods
 NameDescription
Public Extension MethodTryParse<T,TSender> implements parsing to cast a type from string to a type
Top
See Also

Reference

RulesConfig Class
Walter.Web.FireWall.Configurations Namespace

Send Feedback