/cfg/slb/filt <filter number>/aw
AppWall Menu
Displays the AppWall menu for adding a AppWall definitions to the filter.
[AppWall Menu] secwa - Set secured web application for this filter awinflow - Set if AW processing comes before or after Alteon HTTP parsing overload - Set overload protection threshold |
AppWall Menu Options (/cfg/slb/filt <filter number>/aw)
Command Syntax and Usage |
---|
secwa |
| Specifies the secured web application for this filter. |
awinflow |
| Specifies the secured application flow - if AppWall processing comes before or after Alteon HTTP parsing. Values: b (before-default) or a (after) |
thrshold |
| Sets processing time threshold for the WAF overload protection mechanism, which allows to reduce load on the WAF process in case of overload by bypassing WAF inspection for some of the transactions. When the overload protection mechanism is enabled, it looks at the transactions sent within a 10 seconds sliding window and when at least 1,000 transactions are received within such an window:  If the WAF processing time of between 31% and 50% of the transactions within the window is higher than this threshold, Alteon will start sending to the WAF process only 50% of the transactions.  If the WAF processing time of between 51% and 75% of the transactions within the window is higher than this threshold, Alteon will start sending to the WAF process only 10% of the transactions.  If the WAF processing time of over 76% of the transactions within the window is higher than this threshold, Alteon will start sending to the WAF process only 1% of the transactions.  Once 30% or less of the transactions within the window have a WAF processing time higher than this threshold, Alteon will go back to sending all the transactions to the WAF process. Values: 0-1000 (in milliseconds) Default: 0 (protection mechanism disabled) |