Skip to main content

Create an anti-spyware profile

POST 

/sse/config/v1/anti-spyware-profiles

Create an anti-spyware profile.

Request

Query Parameters

    folder stringrequired

    Possible values: Value must match regular expression ^[0-9a-zA-Z._-\s]{1,}$, [Shared, Mobile Users, Remote Networks, Service Connections, Mobile Users Container, Mobile Users Explicit Proxy]

    The folder on which you want to perform this operation.

Body

The Anti-spyware profile you want to create

    cloud_inline_analysis boolean
    description string
    inline_exception_edl_url string[]
    inline_exception_ip_address string[]
    mica_engine_spyware_enabled object[]
  • Array [
  • inline_policy_action string

    Possible values: [alert, allow, drop, reset-both, reset-client, reset-server]

    Default value: alert

    name string
  • ]
  • name stringrequired
    rules object[]
  • Array [
  • action object
    oneOf
    allow object
    category string

    Possible values: [dns-proxy, backdoor, data-theft, autogen, spyware, dns-security, downloader, dns-phishing, phishing-kit, cryptominer, hacktool, dns-benign, dns-wildfire, botnet, dns-grayware, inline-cloud-c2, keylogger, p2p-communication, domain-edl, webshell, command-and-control, dns-ddns, net-worm, any, tls-fingerprint, dns-new-domain, dns, fraud, dns-c2, adware, post-exploitation, dns-malware, browser-hijack, dns-parked]

    name string
    packet_capture string

    Possible values: [disable, single-packet, extended-capture]

    severity string[]
    threat_name string

    Possible values: >= 4 characters

  • ]
  • threat_exception object[]
  • Array [
  • action object
    oneOf
    default object
    exempt_ip object[]
  • Array [
  • name stringrequired
  • ]
  • name string
    notes string
    packet_capture string

    Possible values: [disable, single-packet, extended-capture]

  • ]

Responses

Created

Loading...