Actions Management

Describes how actions are added and managed with the WAF policy.

Actions are objects that represent one of the following:

  • Allow: An action, which upon matching rule, skips all remaining rules in the current module.

  • Check: An action which does not stop the execution of rules in current module. Instead it generates a log message documenting result of rule execution.

  • Return HTTP response: An action which terminates all further processing of an HTTP request or HTTP response and returns a predefined HTTP response that can be configured in the action definition.

    When this action is run in an HTTP request rule, it prevents the HTTP request from being forwarded to a backend. Instead of returning the HTTP response from the backend, the HTTP response that was defined in the action is returned. This action is typically used to block HTTP requests matching specific criteria. When this action is run in an HTTP response rule, it prevents the original HTTP response from the backend from being sent back to the client. Instead, the HTTP response is replaced by the one defined in the action.

Access the Actions list in the WAF Policies page under Resources. Here you can view all the existing actions and their type and how frequently they are employed as part of a rule. The Actions list contains the Manage Action function that allows you to add and delete actions.

Adding Actions

Describes how to add an action to a WAF policy.

To add an action using the Console

Describes how to add an action to a WAF policy using the OCI Console.

  1. Open the navigation menu and click Identity & Security. Under Web Application Firewall, click Policies.

    Alternatively, open the Web Application Firewall page and click Policies under Resources.

    The WAF Policies page appears.

  2. Select the Compartment from the list.

    All the WAF policies in that compartment are listed in tabular form.

  3. (Optional) Apply one or more of the following Filters to limit the WAF policies displayed:
    • State

    • Name

    • Policy Type: Select WAF Policy.

  4. Select the WAF policy for which you want to add an action.

    The WAF Policy Details dialog box appears.

  5. Click Actions under Resources.

    The Actions list appears.

  6. Click Manage Actions.

    The Manage Actions dialog box appears.

  7. Click Add Action.

    The Add Action dialog box appears.

  8. Complete the following:
    • Action Name: Enter the name of the action.

    • Action Type: Specify the action type:

      • Allow: Skips all remaining rules in the current module.

      • Check: Does not stop the execution of rules. Instead it generates a log message documenting the result of the rule.

      • Return HTTP Response: Returns a defined HTTP response.

        Select the Response Code from the list.

        Headers: Complete the following:

        • Header Name: Enter the name of the header.

        • Header Value: Enter the associated value of the header.

        • Click + Another Header to display another header row where you can enter a header name and value pair. Click X to delete the associated header row.

        Response Page Body: Enter the HTTP response body, for example a JSON error response:

        {"code":"403","message":"Forbidden"}
  9. Click Add Action.

    The Add Action dialog box closes.

  10. Click Save Changes in the Manage Actions dialog box.

The action you created is included in the Action list.

Listing Actions

Describes how to display a list of actions contained within a WAF policy.

To list the actions using the Console

Describes how to display a list of actions contained within a WAF policy using the OCI Console.

  1. Open the navigation menu and click Identity & Security. Under Web Application Firewall, click Policies.

    Alternatively, open the Web Application Firewall page and click Policies under Resources.

    The WAF Policies page appears.

  2. Select the Compartment from the list.

    All the WAF policies in that compartment are listed in tabular form.

  3. (Optional) Apply one or more of the following Filters to limit the WAF policies displayed:
    • State

    • Name

    • Policy Type: Select WAF Policy.

  4. Select the WAF policy containing the actions you want to list.

    The WAF Policy Details dialog box appears.

  5. Click Actions under Resources.

    The Actions list appears.

The Actions list displayed shows the name, action type (Allow, Check, Return HTTP Response), and rule usage (attached load balancer name).

Getting Action Details

Describes how to get the details of an action contained within a WAF policy.

To get the details of an action using the Console

Describes how to get the details of an action contained within a WAF policy using the OCI Console.

  1. Open the navigation menu and click Identity & Security. Under Web Application Firewall, click Policies.

    Alternatively, open the Web Application Firewall page and click Policies under Resources.

    The WAF Policies page appears.

  2. Select the Compartment from the list.

    All the WAF policies in that compartment are listed in tabular form.

  3. (Optional) Apply one or more of the following Filters to limit the WAF policies displayed:
    • State

    • Name

    • Policy Type: Select WAF Policy.

  4. Select the WAF policy containing the action for which you want to get details.

    The WAF Policy Details dialog box appears.

  5. Click Actions under Resources.

    The Actions list appears.

  6. Click the "down arrow" next to the action whose details you want to get.
    Alternatively, click Manage Actions to display the Manage Actions dialog box. Click the "down arrow" next to the action whose details you want to get.

The Actions details appear under the displayed shows the Name, Action Type (Allow, Check, Return HTTP Response), and Rule Usage (attached load balancer name).

Editing Actions

Describes how to edit an action contained within a WAF policy.

To edit an action using the Console

Describes how to edit an action contained within a WAF policy using the OCI Console.

  1. Open the navigation menu and click Identity & Security. Under Web Application Firewall, click Policies.

    Alternatively, open the Web Application Firewall page and click Policies under Resources.

    The WAF Policies page appears.

  2. Select the Compartment from the list.

    All the WAF policies in that compartment are listed in tabular form.

  3. (Optional) Apply one or more of the following Filters to limit the WAF policies displayed:
    • State

    • Name

    • Policy Type: Select WAF Policy.

  4. Select the WAF policy containing the action for which you want to edit.

    The WAF Policy Details dialog box appears.

  5. Click Actions under Resources.

    The Actions list appears.

  6. Click Manage Actions.

    The Manage Actions dialog box appears.

  7. Click Edit.

    The Edit Action dialog box appears.

  8. Edit the action settings. See Adding Actions for descriptions of each setting.
  9. Click Save Changes.

    The Edit Action dialog box closes.

  10. Click Save Changes in the Manage Actions dialog box.

The updates you made are present in the details of the action.

Deleting Actions

Describes how to delete an action from a WAF policy.

To delete an action using the Console

Describes how to delete an action from a WAF policy using the OCI Console.

  1. Open the navigation menu and click Identity & Security. Under Web Application Firewall, click Policies.

    Alternatively, open the Web Application Firewall page and click Policies under Resources.

    The WAF Policies page appears.

  2. Select the Compartment from the list.

    All the WAF policies in that compartment are listed in tabular form.

  3. (Optional) Apply one or more of the following Filters to limit the WAF policies displayed:
    • State

    • Name

    • Policy Type: Select WAF Policy.

  4. Select the WAF policy containing the action for which you want to edit.

    The WAF Policy Details dialog box appears.

  5. Click Actions under Resources.

    The Actions list appears.

  6. Click Manage Actions.

    The Manage Actions dialog box appears.

  7. Check one or more actions from the list that you want to delete.
  8. Click Delete.
  9. Confirm the deletions when prompted.
  10. Click Save Changes in the Manage Actions dialog box.

The list of actions reappears without the actions you deleted.