- WAF功能
- 节点自动注册到后台
- 其它接口
- 接口更新日志
- AI接口
- 定制页面上传
- API完成情况
- UEBA参数文档
- 防火墙配置
- 节点、域名、缓存
- 接口认证
- 节点管理
- 缓存配置
- 防火墙配置
- IP黑/白名单
- URL黑/白名单
- 防CC
- 防盗链
- 精准访问控制【2024.06更新】
- 区域访问限制
- APP专用防CC策略
- 内容安全风控:关键字【2024.06更新】
- 内容安全风控:图片
- 安全访问控制
- WAF功能
- 新WAF功能
- 防篡改
- 批量配置接口
- http防护【2024.05更新】
- 动态防护【2024.06更新】
- 资源访问控制【2024.06更新】
- bot防护【2024.06更新】
- api防护【2024.06更新】
- url统计模块【2024.06更新】
- api基线管理
- httpStream
- 证书管理
- 统计数据
- 其它
- 健康检查
- AI接口
- 接口认证
- 测试包
- UEBA【2024.06更新】
- 【内部用】ip库管理【2024.06更新】
防护规则配置-New 20240910
开发中
POST
/firewall/settings
请求参数
Authorization
在 Header 添加参数
Authorization
,其值为在 Bearer 之后拼接 Token示例:
Authorization: Bearer ********************Header 参数
Accept
string
必需
默认值:
application/json
Body 参数application/json
referer
object (防盗链配置)
防盗链
type
boolean
类型
domains
array[string]
域名列表
allow_empty
boolean
允许空Referer
active
boolean
是否开启
accessControl
object (精准访问控制配置)
精准访问控制
active
boolean
功能开启
config
array [object {5}]
必需
requestpwd
object (安全访问控制配置)
安全访问控制
config
array [object {7}]
必需
contentKeywords
object (内容风控配置(文字))
内容安全风控(关键字)
keywords
array[string]
关键词列表
gzip
boolean
回源gzip标识
active
boolean
开关
rules
array[string]
敏感检测正则表达式
sensitiveActive
boolean
服务器敏感信息检测
senWords
array[string]
敏感词列表
contentImg
object (内容风控配置(图片))
内容安全风控(图片)
active
boolean
开关
waf
object
WAF配置
rule_id
array[integer]
WAF启用规则列表
mode
integer
必需
httpMethod
array[string]
必需
domainUuidList
array[string]
域名列表
cc
object (CC防护)
防CC
config
object
必需
active
boolean
整体开关
use_default
boolean
必需
region
object
必需
regions
array[string]
区域名称
active
boolean
开关
ipBlock
object
必需
seven_ip_block
object
必需
three_ip_block
object
必需
urlBlock
object
可选
url_white_list
array [object {2}]
可选
url_black_list
array [object {2}]
可选
active
boolean
可选
tamper
object
防篡改
active
boolean
开关
aliveType
integer
处理方式
statusCode
string
状态码
alive
boolean
网站保活开关
riskURL
boolean
不良信息推送开关
susc
boolean
必需
minScore
integer
必需
httpProtection
object
http防护配置
methodType
array[string]
请求类型
CType
array[string]
content-type
active
boolean
总开关
fileType
array[string]
文件类型
httpActive
boolean
http防护开关
httpQuery
object
必需
requestEncrypt
object
动态防护
active
boolean
总开关
activeForm
boolean
form表单防护
activeXHR
boolean
xhr防护
hookSkewTimestamp
integer
xhr请求时间差范围
formSkewTimestamp
integer
form请求时间范围
formBodyLength
integer
表单内容大小限制
fingerPrint
boolean
指纹采集开关
confusion
boolean
是否开启js/html混淆
urlEncrypt
boolean
url加密开关
verifyConfig
object
必需
verifyCrossIP
object
必需
resource
object
可选
active
boolean
必需
referActive
boolean
防盗链开关
allowEmpty
boolean
允许空
type
integer
必需
domains
array[string]
域名
urls
array[string]
资源urls
rate
integer
资源请求频率
bot
object
bot防护配置
bots
array[string]
必需
active
boolean
必需
apiProtect
object
API防护
active
boolean
可选
api
array [object {6}]
可选
apiBaseline
object
API基线
active
boolean
开关
baselineItems
array [object {4}]
基线规则列表
httpStream
object
可选
active
boolean
开关
urlList
array[string]
url列表
示例
{
"referer": {
"type": true,
"domains": [
"string"
],
"allow_empty": true,
"active": true
},
"accessControl": {
"active": true,
"config": [
{
"action": "string",
"location": "string",
"access_uuid": "string",
"rule": "string",
"block_time": 0
}
]
},
"requestpwd": {
"config": [
{
"url": "string",
"password": "string",
"ip": [
"string"
],
"region": [
"string"
],
"phone": [
"string"
],
"startTime": "string",
"endTime": "string"
}
]
},
"contentKeywords": {
"keywords": [
"string"
],
"gzip": true,
"active": true,
"rules": [
"string"
],
"sensitiveActive": true,
"senWords": [
"string"
]
},
"contentImg": {
"active": true
},
"waf": {
"rule_id": [
0
],
"mode": 0,
"httpMethod": [
"string"
]
},
"domainUuidList": [
"string"
],
"cc": {
"config": {
"site": {
"active": true,
"global_concurrent": 0,
"time_interval": 0,
"policy": "string",
"blockminutes": 0,
"waitseconds": 0,
"waitpolicyminutes": 0,
"redirectlocation": "string",
"redirectwaitseconds": 0,
"protectMode": "string",
"url_rates": [
{
"url": "string",
"rate": 0,
"time_interval": 0
}
]
},
"resuest_rate": {
"active": true,
"rate": 0,
"time_interval": 0,
"challengePolicy": "string",
"protectMinutes": 0,
"whiteMinutes": 0,
"challengeMethods": [
"string"
],
"challengeLimit": 0,
"blockMinutes": 0,
"excludeExt": "string",
"cookieName": "string",
"protectMode": "string",
"url_rates": [
{
"url": "string",
"rate": 0,
"time_interval": 0
}
],
"is_api": true,
"access_rate": 0,
"to_requests": 0,
"time_type": 0,
"block_time": 0
},
"block_config": {
"block_active": true,
"block_time": 0,
"count": 0
}
},
"active": true,
"use_default": true
},
"region": {
"regions": [
"string"
],
"active": true
},
"ipBlock": {
"seven_ip_block": {
"white_block": {
"blocked_ip": [
"string"
],
"release_time": 0,
"type": 0,
"blocked_type": "string"
},
"black_block": {
"blocked_ip": [
"string"
],
"release_time": 0,
"type": 0,
"blocked_type": "string"
}
},
"three_ip_block": {
"black_block": {
"blocked_ip": [
"string"
],
"release_time": 0,
"type": 0,
"blocked_type": "string"
},
"white_block": {
"blocked_ip": [
"string"
],
"release_time": 0,
"type": 0,
"blocked_type": "string"
}
}
},
"urlBlock": {
"url_white_list": [
{
"path": "string",
"method": "string"
}
],
"url_black_list": [
{
"path": "string",
"method": "string"
}
],
"active": true
},
"tamper": {
"active": true,
"aliveType": 0,
"statusCode": "string",
"alive": true,
"riskURL": true,
"susc": true,
"minScore": 0
},
"httpProtection": {
"methodType": [
"string"
],
"CType": [
"string"
],
"active": true,
"fileType": [
"string"
],
"httpActive": true,
"httpQuery": {
"queryLength": 0,
"queryValueLength": 0,
"queryValueNum": 0,
"cookiesLength": 0,
"fileLength": 0,
"headerLength": 0,
"urlLength": 0
}
},
"requestEncrypt": {
"active": true,
"activeForm": true,
"activeXHR": true,
"hookSkewTimestamp": 0,
"formSkewTimestamp": 0,
"formBodyLength": 0,
"fingerPrint": true,
"confusion": true,
"urlEncrypt": true,
"verifyConfig": {
"maxAuthFail": 0,
"authFailDisposalMethod": "string",
"maxUnauthv": 0,
"unauthDisposalMethod": "string"
},
"verifyCrossIP": {
"acticeVerifyCrossIP": true,
"maxCrossIP": 0,
"crossIPDisposalMethod": "string",
"timeLimit": 0
}
},
"resource": {
"active": true,
"referActive": true,
"allowEmpty": true,
"type": 0,
"domains": [
"string"
],
"urls": [
"string"
],
"rate": 0
},
"bot": {
"bots": [
"string"
],
"active": true
},
"apiProtect": {
"active": true,
"api": [
{
"url": "string",
"authentication": {
"type": 0,
"failCount": 0,
"banTime": 0,
"banType": 0,
"hash": "string",
"key": "string",
"header": "string",
"exitTime": "string",
"callCount": "string",
"callTime": "string",
"ipAddress": [
"string"
],
"region": [
"string"
]
},
"check": {
"active": true,
"checkRule": [
"string"
],
"failCount": 0,
"banTime": 0,
"banType": 0
},
"rateLimit": {
"active": 0,
"callCount": 0,
"callTime": 0,
"failCount": 0,
"banTime": 0,
"banType": 0
},
"sensitive": {
"active": true,
"rule": [
"string"
],
"failType": 0,
"gzip": true,
"hitTime": 0,
"hitCount": 0,
"countFailType": 0,
"blockType": 0,
"blockTime": 0
},
"weakPasswords": {
"active": true,
"isTop": true,
"isChar": true,
"mixLength": 0,
"param": [
"string"
]
}
}
]
},
"apiBaseline": {
"active": true,
"baselineItems": [
{
"pathRegex": "string",
"statusCodeLimit": [
0
],
"rateLimit": {
"count": 0,
"duration": 0
},
"policy": "string"
}
]
},
"httpStream": {
"active": true,
"urlList": [
"string"
]
}
}示例代码
Shell
JavaScript
Java
Swift
Go
PHP
Python
HTTP
C
C#
Objective-C
Ruby
OCaml
Dart
R
请求示例请求示例
Shell
JavaScript
Java
Swift
curl --location --request POST '/firewall/settings' \
--header 'Accept;' \
--header 'Content-Type: application/json' \
--data-raw ''返回响应
🟢200成功
application/json
Body
object {0}
示例
{}修改于 2025-02-27 07:44:25