Data Source: oci_waas_protection_rules

This data source provides the list of Protection Rules in Oracle Cloud Infrastructure Web Application Acceleration and Security service.

Gets the list of available protection rules for a WAAS policy. Use the GetWafConfig operation to view a list of currently configured protection rules for the Web Application Firewall, or use the ListRecommendations operation to get a list of recommended protection rules for the Web Application Firewall. The list is sorted by key, in ascending order.

Example Usage

data "oci_waas_protection_rules" "test_protection_rules" {
	#Required
	waas_policy_id = oci_waas_waas_policy.test_waas_policy.id

	#Optional
	action = var.protection_rule_action
	mod_security_rule_id = oci_events_rule.test_rule.id
}

Argument Reference

The following arguments are supported:

• action - (Optional) Filter rules using a list of actions.
• mod_security_rule_id - (Optional) Filter rules using a list of ModSecurity rule IDs.
• waas_policy_id - (Required) The OCID of the WAAS policy.

Attributes Reference

The following attributes are exported:

• protection_rules - The list of protection_rules.

ProtectionRule Reference

The following attributes are exported:

• action - The action to take when the traffic is detected as malicious. If unspecified, defaults to OFF.

• description - The description of the protection rule.

• exclusions -

  • exclusions - An array of The target property of a request that would allow it to bypass the protection rule. For example, when target is REQUEST_COOKIE_NAMES, the list may include names of cookies to exclude from the protection rule. When the target is ARGS, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. Exclusions properties must not contain whitespace, comma or |. Note: If protection rules have been enabled that utilize the maxArgumentCount or maxTotalNameLengthOfArguments properties, and the target property has been set to ARGS, it is important that the exclusions properties be defined to honor those protection rule settings in a consistent manner.
  • target - The target of the exclusion.

• key - The unique key of the protection rule.

• labels - The list of labels for the protection rule.

  Note: Protection rules with a ResponseBody label will have no effect unless isResponseInspected is true.

• mod_security_rule_ids - The list of the ModSecurity rule IDs that apply to this protection rule. For more information about ModSecurity’s open source WAF rules, see Mod Security’s documentation.

• name - The name of the protection rule.