Create a security rule
POST/security-rules
Create a new security rule.
Request
Query Parameters
position anyrequired
The position of a security rule
- application/json
Body
Created
- folder
- snippet
- device
oneOf
folder stringrequired
Possible values: <= 64 characters, Value must match regular expression ^[a-zA-Z\d-_\. ]+$
The folder in which the resource is defined
snippet stringrequired
Possible values: <= 64 characters, Value must match regular expression ^[a-zA-Z\d-_\. ]+$
The snippet in which the resource is defined
device stringrequired
Possible values: <= 64 characters, Value must match regular expression ^[a-zA-Z\d-_\. ]+$
The device in which the resource is defined
name stringrequired
The name of the security rule
disabled boolean
Is the security rule disabled?
description string
The description of the security rule
tag string[]
The tags associated with the security rule
from string[]required
The source security zone(s)
source string[]required
The source addresses(es)
negate_source boolean
Negate the source address(es)?
source_user string[]required
List of source users and/or groups. Reserved words include any, pre-login, known-user, and unknown.
source_hip string[]
The source Host Integrity Profile(s)
to string[]required
The destination security zone(s)
destination string[]required
The destination address(es)
negate_destination boolean
Negate the destination addresses(es)?
destination_hip string[]
The destination Host Integrity Profile(s)
application string[]required
The application(s) being accessed
service string[]required
The service(s) being accessed
category string[]required
The URL categories being accessed
action required
Possible values: [allow, deny, drop, reset-client, reset-server, reset-both]
The action to be taken when the rule is matched
profile_setting object
The security profile object
group string[]
The security profile group
log_setting string
The external log forwarding profile
schedule string
Schedule in which this rule will be applied
log_start boolean
Log at session start?
log_end boolean
Log at session end?
Responses
- 200
- 400
- 401
- 403
- 409
- default
Created
Bad Request
- application/json
- Schema
- Example (from schema)
- input_format_mismatch
- output_format_mismatch
- missing_query_parameter
- invalid_query_parameter
- missing_body
- invalid_object
Schema
- Array [
- ]
_errors object[]
code string
message string
details object
help string
_request_id string
{
"_errors": [
{
"code": "string",
"message": "string",
"details": {},
"help": "string"
}
],
"_request_id": "string"
}
Input Format Mismatch
{
"_errors": [
{
"code": "E003",
"message": "Input Format Mismatch: input-format=json",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Output Format Mismatch
{
"_errors": [
{
"code": "E003",
"message": "Output Format Mismatch: output-format=json Accept=xml",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Missing Query Parameter
{
"_errors": [
{
"code": "E003",
"message": "Missing Query Parameter: name",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Invalid Query Parameter
{
"_errors": [
{
"code": "E003",
"message": "Invalid Query Parameter: location=invalid",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Missing Body
{
"_errors": [
{
"code": "E003",
"message": "Missing Body",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Invalid Object
{
"_errors": [
{
"code": "E003",
"message": "Invalid Object",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Unauthorized
- application/json
- Schema
- Example (from schema)
- auth_not_authenticated
- invalid_credential
- key_too_long
- key_expired
- need_password_change
Schema
- Array [
- ]
_errors object[]
code string
message string
details object
help string
_request_id string
{
"_errors": [
{
"code": "string",
"message": "string",
"details": {},
"help": "string"
}
],
"_request_id": "string"
}
Not Authenticated
{
"_errors": [
{
"code": "E016",
"message": "Not Authenticated",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Invalid Credential
{
"_errors": [
{
"code": "E016",
"message": "Invalid Credential",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Key Too Long
{
"_errors": [
{
"code": "E016",
"message": "Key Too Long",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Key Expired
{
"_errors": [
{
"code": "E016",
"message": "Key Expired",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Need Password Change
{
"_errors": [
{
"code": "E016",
"message": "The password needs to be changed.",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Forbidden
- application/json
- Schema
- Example (from schema)
- auth_unauthorized
Schema
- Array [
- ]
_errors object[]
code string
message string
details object
help string
_request_id string
{
"_errors": [
{
"code": "string",
"message": "string",
"details": {},
"help": "string"
}
],
"_request_id": "string"
}
Unauthorized
{
"_errors": [
{
"code": "E007",
"message": "Unauthorized",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Conflict
- application/json
- Schema
- Example (from schema)
- object_not_unique
- name_not_unique
- reference_not_zero
Schema
- Array [
- ]
_errors object[]
code string
message string
details object
help string
_request_id string
{
"_errors": [
{
"code": "string",
"message": "string",
"details": {},
"help": "string"
}
],
"_request_id": "string"
}
Object Not Unique
{
"_errors": [
{
"code": "E016",
"message": "Object Not Unique",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Name Not Unique
{
"_errors": [
{
"code": "E006",
"message": "Name Not Unique",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Reference Not Zero
{
"_errors": [
{
"code": "E009",
"message": "Reference Not Zero",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
General Errors
- application/json
- Schema
- Example (from schema)
- version_not_supported
- method_not_allowed
- action_not_supported
- bad_xpath
- invalid_command
- malformed_command
- session_timeout
Schema
- Array [
- ]
_errors object[]
code string
message string
details object
help string
_request_id string
{
"_errors": [
{
"code": "string",
"message": "string",
"details": {},
"help": "string"
}
],
"_request_id": "string"
}
Version Not Supported
{
"_errors": [
{
"code": "E012",
"message": "Version Not Supported",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Method Not Supported
{
"_errors": [
{
"code": "E012",
"message": "Method Not Supported",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Action Not Supported
{
"_errors": [
{
"code": "E012",
"message": "Action Not Supported: move",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Bad XPath
{
"_errors": [
{
"code": "E013",
"message": "Bad XPath",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Invalid Command
{
"_errors": [
{
"code": "E003",
"message": "Invalid Command",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Malformed Command
{
"_errors": [
{
"code": "E003",
"message": "Malformed Command",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Session Timeout
{
"_errors": [
{
"code": "4",
"message": "Session Timeout",
"details": {}
}
],
"_request_id": "123e4567-e89b-12d3-a456-426655440000"
}
Loading...