gfwleak/dongxiaoyan-tsg-autotest
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-09-14. You can view files and clone it, but cannot push or open issues or pull requests.
Files
c08bf62e87e3b2584c570d33e75afd6fb692be61
dongxiaoyan-tsg-autotest/01-TestCase/tsg_ui/ui_security/Security.robot

565 lines
28 KiB
Plaintext
Raw Normal View History

1、提交objects优化关键字(已完成) 2、提交安全策略关键字(未完成)
2021-01-22 18:44:47 +08:00
*** Settings ***
Force Tags tsg-ui objects tags
Resource ../../../02-Keyword/tsg_ui/securityPolicy/SecurityPolicy.robot
Library OperatingSystem
Resource ../../../02-Keyword/tsg_ui/Menu.robot
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
Resource ../../../02-Keyword/tsg_ui/objects/NewObjectPages.robot
Resource ../../../02-Keyword/tsg_ui/objects/NewObject.robot
Resource ../../../03-Variable/bifangapivariable.txt
1、提交objects优化关键字(已完成) 2、提交安全策略关键字(未完成)
2021-01-22 18:44:47 +08:00
*** Test Cases ***
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
SecurityPolicy-Deny-HTTP-MaxCombination-Drop
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建对象url
Comment 新建对象url
CreatePage URL single zdhurl keywordtext=*.com
#新建Request Header
Comment Request Header
#新建cookie
CreatePage HTTPSignature single zdhreqck reqrestype=req reqresheader=ck keywordtext=1234@#%
#新建ua
CreatePage HTTPSignature single zdhrequa reqrestype=req reqresheader=ua keywordtext=*скрипцияк
#新建Response Header
Comment Response Header
#新建set cookie
CreatePage HTTPSignature single zdhressck reqrestype=res reqresheader=sck keywordtext=1234@#%
#新建ct
CreatePage HTTPSignature single zdhresct reqrestype=res reqresheader=ct keywordtext=text*
#新建Request Content
Comment Request Content
#新建Request Content
CreatePage Key single zdhreqcontent keywordtext=*pppp
#新建策略
Comment 新建策略
1、提交objects优化关键字(已完成) 2、提交安全策略关键字(未完成)
2021-01-22 18:44:47 +08:00
Menu policys Security Policy
SecurityPolicy.CreateButton
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
1、提交objects优化关键字(已完成) 2、提交安全策略关键字(未完成)
2021-01-22 18:44:47 +08:00
SecurityPolicy.Create-action deny
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
1、提交objects优化关键字(已完成) 2、提交安全策略关键字(未完成)
2021-01-22 18:44:47 +08:00
SecurityPolicy.Create-Destination-Button
SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
${hostname} create list zdhfqdn
${urlname} create list zdhurl
${RequestHeadername} create list zdhreqck zdhrequa
${ResponseHeadername} create list zdhressck zdhresct
${RequestContentname} create list zdhreqcontent
${filter} create list Host URL Request Header Response Header Request Content
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname} URLname=${urlname} Request Headername=${RequestHeadername}
... Response Headername=${ResponseHeadername} Request Contentname=${RequestContentname}
Deny-subaction action=deny subaction=Drop
LogSession 1
Enabled open
Security-Policies-OK
提交安全策略修改关键字
2021-02-01 18:52:36 +08:00
sleep 1
#修改策略,修改策略相当于再进行一遍新增
Comment 修改策略
Security-Source Name SecurityPolicy-Deny-HTTP-MaxCombination
EditButton
Initialize-Policie Deny
#新建策略
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.2 post=1
SecurityPolicy.Create-Destination-Button
SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.3 post=1
${fqdnname} create list zdhfqdn
${filter} create list SNI CN SAN
Create-Application-Button
ApplicationSearch SSL
Create-Filter-judge Application=SSL Filter=${filter} SSLSNIname=${fqdnname} CNname=${fqdnname} SANname=${fqdnname}
Deny-subaction action=deny subaction=RST
LogSession 1
Enabled open
Security-Policies-OK
Security-Source Name SecurityPolicy-Deny-SSL-MaxCombination-Drop
${text} get text xpath=//*[@id="ly-table1-listcontent"]/div/div[3]/table/tbody/tr/td[2]/div/div/p
Should Be Equal As Strings ${text} SecurityPolicy-Deny-SSL-MaxCombination-Drop
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
SecurityPolicy-Deny-HTTP-MaxCombination-RST
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建对象url
Comment 新建对象url
CreatePage URL single zdhurl keywordtext=*.com
#新建Request Header
Comment Request Header
#新建cookie
CreatePage HTTPSignature single zdhreqck reqrestype=req reqresheader=ck keywordtext=1234@#%
#新建ua
CreatePage HTTPSignature single zdhrequa reqrestype=req reqresheader=ua keywordtext=*скрипцияк
#新建Response Header
Comment Response Header
#新建set cookie
CreatePage HTTPSignature single zdhressck reqrestype=res reqresheader=sck keywordtext=1234@#%
#新建ct
CreatePage HTTPSignature single zdhresct reqrestype=res reqresheader=ct keywordtext=text*
#新建Request Content
Comment Request Content
#新建Request Content
CreatePage Key single zdhreqcontent keywordtext=*pppp
#Response Content
Comment Response Content
#新建Response Content
CreatePage Key single zdhrescontent keywordtext=*pppp
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${urlname} create list zdhurl
${RequestHeadername} create list zdhreqck zdhrequa
${ResponseHeadername} create list zdhressck zdhresct
${RequestContentname} create list zdhreqcontent
${ResponseContentname} create list zdhrescontent
${filter} create list Host URL Request Header Response Header Request Content
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname} URLname=${urlname} Request Headername=${RequestHeadername}
... Response Headername=${ResponseHeadername} Request Contentname=${RequestContentname} Response Contentname=${ResponseContentname}
Deny-subaction action=deny subaction=RST
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Block403TEXT
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
Deny-subaction action=deny subaction=Block code=403 Content=TEXT block-text=123456
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Block403ProfileCreate
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
提交:1、新增安全策略用例2、修改安全策略关键字3、提交离开提示关键字
2021-01-27 18:44:48 +08:00
Deny-subaction action=deny subaction=Block code=403 Content=Profile SearchorCreate=Create ProfileName=zdhprofilehtml file=${path}response_pages_files\\Create-ResponsePages-test.html
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Block403ProfileSearch
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
提交:1、新增安全策略用例2、修改安全策略关键字3、提交离开提示关键字
2021-01-27 18:44:48 +08:00
Deny-subaction action=deny subaction=Block code=403 Content=Profile SearchorCreate=Search ProfileName=zdhprofilehtml
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Block404TEXT
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
Deny-subaction action=deny subaction=Block code=404 Content=TEXT block-text=123456
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Block404ProfileCreate
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
提交:1、新增安全策略用例2、修改安全策略关键字3、提交离开提示关键字
2021-01-27 18:44:48 +08:00
Deny-subaction action=deny subaction=Block code=404 Content=Profile SearchorCreate=Create ProfileName=zdhprofilehtml file=${path}response_pages_files\\Create-ResponsePages-test.html
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Block404ProfileSearch
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
提交:1、新增安全策略用例2、修改安全策略关键字3、提交离开提示关键字
2021-01-27 18:44:48 +08:00
Deny-subaction action=deny subaction=Block code=404 Content=Profile SearchorCreate=Search ProfileName=zdhprofilehtml
提交安全策略关键字和部分用例
2021-01-26 18:36:54 +08:00
LogSession 1
Enabled open
Security-Policies-OK
提交:1、新增安全策略用例2、修改安全策略关键字3、提交离开提示关键字
2021-01-27 18:44:48 +08:00
SecurityPolicy-Deny-HTTP-Host-Alert200TEXT
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
Deny-subaction action=deny subaction=Alert code=200 Content=TEXT block-text=123456
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Alert200ProfileCreate
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
Deny-subaction action=deny subaction=Alert code=200 Content=Profile SearchorCreate=Create ProfileName=zdhprofilehtml file=${path}response_pages_files\\Create-ResponsePages-test.html
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Alert200ProfileSearch
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
Deny-subaction action=deny subaction=Alert code=200 Content=Profile SearchorCreate=Search ProfileName=zdhprofilehtml
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-HTTP-Host-Alert204
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-HTTP-MaxCombination
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${hostname} create list zdhfqdn
${filter} create list Host
Create-Application-Button
ApplicationSearch HTTP
Create-Filter-judge Application=HTTP Filter=${filter} Hostname=${hostname}
Deny-subaction action=deny subaction=Alert code=204
LogSession 1
Enabled open
Security-Policies-OK
提交安全策略修改关键字
2021-02-01 18:52:36 +08:00
SecurityPolicy-Deny-SSL-MaxCombination-Drop
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${fqdnname} create list zdhfqdn
${filter} create list SNI CN SAN
Create-Application-Button
ApplicationSearch SSL
Create-Filter-judge Application=SSL Filter=${filter} SSLSNIname=${fqdnname} CNname=${fqdnname} SANname=${fqdnname}
Deny-subaction action=deny subaction=Drop
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-SSL-MaxCombination-RST
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${fqdnname} create list zdhfqdn
${filter} create list SNI CN SAN
Create-Application-Button
ApplicationSearch SSL
Create-Filter-judge Application=SSL Filter=${filter} SSLSNIname=${fqdnname} CNname=${fqdnname} SANname=${fqdnname}
Deny-subaction action=deny subaction=RST
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-DNS-MaxCombination-Drop
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${fqdnname} create list zdhfqdn
${filter} create list QNAME
Create-Application-Button
ApplicationSearch DNS
Create-Filter-judge Application=DNS Filter=${filter} QNAMEname=${fqdnname}
Deny-subaction action=deny subaction=Drop
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-DNS-MaxCombination-Redirect-A
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${fqdnname} create list zdhfqdn
${filter} create list QNAME
Create-Application-Button
ApplicationSearch DNS
Create-Filter-judge Application=DNS Filter=${filter} QNAMEname=${fqdnname}
Deny-subaction action=deny subaction=Redirect QType=A Avalue=5.5.5.5 Attl=100 CNAMEvalue=www.a.b CNAMEttl=1000
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-DNS-MaxCombination-Redirect-AAAA
#新建对象fqdn
Comment 新建对象fqdn
CreatePage FQDN single zdhfqdn keywordtext=*www.baidu.com
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${fqdnname} create list zdhfqdn
${filter} create list QNAME
Create-Application-Button
ApplicationSearch DNS
Create-Filter-judge Application=DNS Filter=${filter} QNAMEname=${fqdnname}
Deny-subaction action=deny subaction=Redirect QType=AAAA Avalue=1234::ABCD Attl=100 CNAMEvalue=www.a.b CNAMEttl=1000
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-FTP-MaxCombination-Drop
#新建对象url
Comment 新建对象url
CreatePage URL single zdhftpurl keywordtext=*.com
#新建Content
Comment Content
CreatePage Key single zdhftpContent keywordtext=*pppp
#新建Account
Comment Account
CreatePage Key single zdhftpAccount keywordtext=*pppp
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${URIname} create list zdhftpurl
${FTPContentname} create list zdhftpContent
${FTPAccountname} create list zdhftpAccount
${filter} create list URI Content Account
Create-Application-Button
ApplicationSearch FTP
Create-Filter-judge Application=FTP Filter=${filter} URIname=${URIname} FTPContentname=${FTPContentname} FTPAccountname=${FTPAccountname}
Deny-subaction action=deny subaction=Drop
LogSession 1
Enabled open
Security-Policies-OK
SecurityPolicy-Deny-FTP-MaxCombination-RST
#新建对象url
Comment 新建对象url
CreatePage URL single zdhftpurl keywordtext=*.com
#新建Content
Comment Content
CreatePage Key single zdhftpContent keywordtext=*pppp
#新建Account
Comment Account
CreatePage Key single zdhftpAccount keywordtext=*pppp
#新建策略
Comment 新建策略
Menu policys Security Policy
SecurityPolicy.CreateButton
SecurityPolicy.Create-name SecurityPolicy-Deny-SSL-MaxCombination-Drop
SecurityPolicy.Create-action deny
SecurityPolicy.Create-Source-Button
SecurityPolicy.Create-Source type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
#SecurityPolicy.Create-Destination-Button
#SecurityPolicy.Create-Destination type1=Ip CreateOrSearch=Create Add=Address name=zdhip001 ipclienttext1=192.168.100.1 post=1
${URIname} create list zdhftpurl
${FTPContentname} create list zdhftpContent
${FTPAccountname} create list zdhftpAccount
${filter} create list URI Content Account
Create-Application-Button
ApplicationSearch FTP
Create-Filter-judge Application=FTP Filter=${filter} URIname=${URIname} FTPContentname=${FTPContentname} FTPAccountname=${FTPAccountname}
Deny-subaction action=deny subaction=RST
LogSession 1
Enabled open
Security-Policies-OK
提交:1、新增安全策略用例2、修改安全策略关键字3、提交离开提示关键字
2021-01-27 18:44:48 +08:00
Reference in New Issue Copy Permalink