Dell SonicWALL Secure Mobile Access 8.5
Administration Guide
289
2 In the Edit WAF Signature-based Exclusions screen, select one of the following actions from the Action
drop-down list:
•DISABLE – Disable Web Application Firewall inspections for this signature in traffic from hosts
listed in this exclusion
• DETECT – Detect and log threats matching this signature from hosts listed in this exclusion, but
do not block access to the host
•PREVENT – Log and block host access for threats matching this signature from hosts listed in this
exclusion
3 To apply this action globally to all hosts, leave the Host field blank. To apply this action to an individual
host, type the host entry as it appears in the bookmark or offloaded application into the Host field. This
can be a host name or an IP address. To determine the correct host entry for this exclusion, see
Determining the Host Entry for Exclusions on page 290.
You can configure a path to a particular folder or file along with the host. The protocol, port, and the
request parameters are simply ignored in the URL. If a path is configured, then the exclusion is
recursively applied to all subfolders and files. For instance, if Host is set to
webmail.yourcompany.com/exchange, then all files and folders under exchange are also excluded.
4 If you specified a host, click Add to move the host name into the list box.
5 If you want to apply this action to additional individual hosts, repeat Step 3 and Step 4 to add more hosts
to this exclusion.
6Click Accept. If the Host list contains host entries, Secure Mobile Access verifies that each host entry is
valid. If no hosts were specified, a dialog box confirms that this is a global action to be applied to the
signature itself.
7Click OK in the confirmation dialog box.
8Click Accept on the Web Application Firewall > Signatures page to apply the updated settings. New
settings are applied to any new HTTP connections and requests. The existing HTTP connections and
requests continues to use the old settings until they are terminated.
Reverting a Signature to Global Settings
You can revert to using global signature group settings for a signature that was previously configured with an
exclusion, without losing the configuration. This allows you to leave the host names in place in case you need to
re-enable the exclusion.
To revert to using global signature group settings for a signature:
1On the Web Application Firewall > Signatures page, click Configure for the signature that you
wish to change.
2 In the Edit WAF Signature-based Exclusions screen, select INHERIT GLOBAL from the Action drop-down
list.
3The Host field might be blank if global settings were previously applied to this signature. To revert to
global signature settings for all hosts, leave the Host field blank. To apply this action to one or more
individual hosts, leave these host entries in the Host field and remove any host entries that are not to be
reverted.
4Click Accept. Secure Mobile Access verifies that each host entry is valid.
5Click OK in the confirmation dialog box.
6Click Accept on the Web Application Firewall > Signatures page to apply the updated settings. New
settings are applied to any new HTTP connections and requests. The existing HTTP connections and
requests continue to use the old settings until they are terminated.
To Next Page
Loading...
