Updating a rule in an ARL profile

Edit the basic rule settings:

• Name.
• Description.
• Rule priority. The smaller the value, the higher is the rule priority.
• Dry run (logging without request blocking) settings.

Under Conditions for traffic, specify which traffic the rule will be used to analyze:

• All traffic: The rule will be used to analyze the whole traffic.

• On condition: The rule will be used to analyze the traffic specified in the Conditions field:

  • IP: IP address, IP address range, IP address region, or address list.
  • HTTP header: HTTP header string.
  • Request URI: Request path.
  • Host: Domain receiving the request.
  • HTTP method: Request method.
  • Cookie: Cookie header string.

  You can set multiple conditions. To do this, select all the condition types you need in the Conditions field.

  You can also set multiple conditions of the same type. To do this, click and or or in the section with the condition you need.

  To delete a condition, click .

Change the request counting method and grouping criteria:

• No grouping: Counting each request individually.

• Grouping by property: Counting request groups sharing one or more common properties.

  • Select a grouping property:

    Automatic grouping	Grouping by key
    Request path: Request path	HTTP cookie: String in the cookie header
    HTTP method: Request method	HTTP header: String in the HTTP header
    IP address: IP address the request came from	Query params: String in the request parameters
    Region: IP address region of the requests
    Host: Domain receiving the request

    To group by key, specify the key value.

  • (Optional) Enable Case-sensitive to put properties with the same values in different cases into different groups.

Specify a request limit or request limit per group as well as a time interval (from 1 second to 60 minutes) for the limit. All requests above the limit will be blocked.

Click Save rule.