用例与命令修改,解决由该部分用例引起的策略之间互相冲突的问题
This commit is contained in:
hebingning
@@ -59,13 +59,13 @@ Proxy-Policy-allow-00002
|
||||
Proxy-Policy-allow-00003
|
||||
[Tags] url4种匹配
|
||||
Comment 创建fqdn
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*smzdm.com,*bilibili.com,*cheapair.com,*surfline.com
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*csgo500.com,*znakitaro.ru,*astrou.ru,*lunar.pw
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=csgo500,$znakitaro.ru/,*trou.ru/,lun*
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-allow policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=114|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-allow policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=114|TSG_FIELD_SSL_SNI,${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId1} AddPolicies 1 ${policyDict} v2
|
||||
${policyId1} Get-Pids ${policyId1}
|
||||
@@ -76,7 +76,7 @@ Proxy-Policy-allow-00003
|
||||
${rescode} ${policyId2} AddPolicies 1 ${policyDict} v2
|
||||
${policyId2} Get-Pids ${policyId2}
|
||||
${policyId2} Set Variable ${policyId2}[0]
|
||||
#insert_policyId_to_file1 allow_objectId2 ${objectId}
|
||||
insert_policyId_to_file1 allow_objectId2 ${objectId}
|
||||
insert_policyId_to_file1 allow_objectId3 ${objectId1}
|
||||
insert_policyId_to_file1 intercept_allow_policyId2 ${policyId1}
|
||||
insert_policyId_to_file1 allow_policyId2 ${policyId2}
|
||||
|
||||
@@ -34,16 +34,16 @@ SecurityPolicy-Deny-Dns-00001
|
||||
|
||||
SecurityPolicy-Deny-Dns-00002
|
||||
[Tags] cat右和完整匹配
|
||||
# Comment 创建cat
|
||||
# ${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*yhd.com,$www.vk.com
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*arctictrucks.ru,*wifika.ru
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建安全策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Dns-00002 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"DNS","method":"redirect","resolution":[{"qtype":"A","answer":[{"atype":"CNAME","value":"www.jd.com","ttl":{"min":500,"max":500}},{"atype":"A","value":"192.168.41.186","ttl":{"min":300,"max":300}}]}]} filterList=103|TSG_FIELD_DNS_QNAME isValid=${1} appIdObjects=${DNS_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Dns-00002 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"DNS","method":"redirect","resolution":[{"qtype":"A","answer":[{"atype":"CNAME","value":"www.jd.com","ttl":{"min":500,"max":500}},{"atype":"A","value":"192.168.41.186","ttl":{"min":300,"max":300}}]}]} filterList=103|TSG_FIELD_DNS_QNAME,103|TSG_FIELD_DNS_QNAME isValid=${1} appIdObjects=${DNS_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId} AddPolicies 1 ${policyDict} v2
|
||||
${policyId} Get-Pids ${policyId}
|
||||
${policyId} Set Variable ${policyId}[0]
|
||||
#insert_policyId_to_file1 deny_dns_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 deny_dns_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 deny_dns_policyId1 ${policyId}
|
||||
|
||||
SecurityPolicy-Deny-Dns-00003
|
||||
@@ -64,6 +64,7 @@ SecurityPolicy-Deny-Dns-00003
|
||||
|
||||
SecurityPolicy-Deny-Dns-00004
|
||||
[Tags] fqdn右匹配 destination:iplearning update fqdn
|
||||
Comment 本用例引用的destination是ip learning学习到的数据,为保证后续步骤可以执行,destination需要引用已经存在的ip learning
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*twitch.tv
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
@@ -71,7 +72,7 @@ SecurityPolicy-Deny-Dns-00004
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$www.twitch.tv
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建安全策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Dns-00004 destination=164745|TSG_SECURITY_DESTINATION_ADDR policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"DNS","method":"redirect","resolution":[{"answer":[{"atype":"AAAA","value":"fc00::2:22","ttl":{"min":400,"max":400}},{"atype":"CNAME","value":"www.facebook.com","ttl":{"min":400,"max":400}}],"qtype":"AAAA"},{"qtype":"A","answer":[{"atype":"CNAME","value":"www.ok.ru","ttl":{"min":400,"max":400}},{"atype":"A","value":"192.168.40.110","ttl":{"min":400,"max":400}}]}]} filterList=${objectId}|TSG_FIELD_DNS_QNAME isValid=${1} appIdObjects=${DNS_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Dns-00004 destination=3123|TSG_SECURITY_DESTINATION_ADDR policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"DNS","method":"redirect","resolution":[{"answer":[{"atype":"AAAA","value":"fc00::2:22","ttl":{"min":400,"max":400}},{"atype":"CNAME","value":"www.facebook.com","ttl":{"min":400,"max":400}}],"qtype":"AAAA"},{"qtype":"A","answer":[{"atype":"CNAME","value":"www.ok.ru","ttl":{"min":400,"max":400}},{"atype":"A","value":"192.168.40.110","ttl":{"min":400,"max":400}}]}]} filterList=${objectId}|TSG_FIELD_DNS_QNAME isValid=${1} appIdObjects=${DNS_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId} AddPolicies 1 ${policyDict} v2
|
||||
${policyId} Get-Pids ${policyId}
|
||||
|
||||
@@ -39,16 +39,16 @@ SecurityPolicy-Deny-Http-00001
|
||||
|
||||
SecurityPolicy-Deny-Http-00002
|
||||
[Tags] cat右匹配
|
||||
Comment 创建cat
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*nymbler.com
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*bellaircraftmuseum.org
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建安全策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Http-00002 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"HTTP","method":"rst"} filterList=150|TSG_FIELD_HTTP_HOST isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Http-00002 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"HTTP","method":"rst"} filterList=150|TSG_FIELD_HTTP_HOST,${objectId}|TSG_FIELD_HTTP_HOST isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId} AddPolicies 1 ${policyDict} v2
|
||||
${policyId} Get-Pids ${policyId}
|
||||
${policyId} Set Variable ${policyId}[0]
|
||||
#insert_policyId_to_file1 deny_http_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 deny_http_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 deny_http_policyId1 ${policyId}
|
||||
|
||||
SecurityPolicy-Deny-Http-00003
|
||||
@@ -299,7 +299,7 @@ SecurityPolicy-Deny-Http-00016
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*open.node.com
|
||||
${rescode} ${object_fqdn_Id} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=*action
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=open.node
|
||||
${rescode} ${object_url_Id} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建请求头
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=Mozilla/5.0*|User-Agent
|
||||
@@ -308,7 +308,7 @@ SecurityPolicy-Deny-Http-00016
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=charset|Content-Type
|
||||
${rescode} ${object_yd_Id} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建请求体
|
||||
${objectDict} Create Dictionary objectType=keywords isValid=${1} addItemList=qazxsw
|
||||
${objectDict} Create Dictionary objectType=keywords isValid=${1} addItemList=DenyHttp0016
|
||||
${rescode} ${object_body_Id} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建安全策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-Http-00016 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"HTTP","method":"drop"} filterList=${object_fqdn_Id}|TSG_FIELD_HTTP_HOST,${object_url_Id}|TSG_FIELD_HTTP_URL,${object_qq_Id}|TSG_FIELD_HTTP_REQ_HDR,${object_yd_Id}|TSG_FIELD_HTTP_RES_HDR,${object_body_Id}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
|
||||
@@ -46,8 +46,8 @@ Proxy-Policy-deny-00001
|
||||
Proxy-Policy-deny-00002
|
||||
[Tags] fqdn_category
|
||||
Comment 创建fqdn
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*villaday.com
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*kingidentity.com
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment #创建引用文件
|
||||
${response} CreatePolicyFile2 ${url} ${responsePageFiles} 404english.html resPages
|
||||
${profiledId} Get From Dictionary ${response} profileId
|
||||
@@ -64,23 +64,23 @@ Proxy-Policy-deny-00002
|
||||
${policyId2} Get-Pids ${policyId2}
|
||||
${policyId2} Set Variable ${policyId2}[0]
|
||||
insert_policyId_to_file1 deny_profileId ${profiledId}
|
||||
#insert_policyId_to_file1 deny_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 deny_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 intercept_deny_policyId1 ${policyId1}
|
||||
insert_policyId_to_file1 deny_policyId1 ${policyId2}
|
||||
|
||||
Proxy-Policy-deny-00003
|
||||
[Tags] url4种匹配
|
||||
Comment 创建fqdn
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*wmtransfer.com,*banbaowang.com,*qidian.com,*rolandberger.com
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*myamber.ae,*creativetravelgroup.com,*hinabian.com,*smithsonianjourneys.org
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=railw*,$creativetravelgroup.com/,*hinabian.com,smithsonianjourneys
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=myamber.ae*,$creativetravelgroup.com/,*hinabian.com/,smithsonianjourneys
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment #创建引用文件
|
||||
Comment 创建引用文件
|
||||
${response} CreatePolicyFile2 ${url} ${responsePageFiles} 404china.html resPages
|
||||
${profiledId} Get From Dictionary ${response} profileId
|
||||
Comment Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=162|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=162|TSG_FIELD_SSL_SNI,${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId1} AddPolicies 1 ${policyDict} v2
|
||||
${policyId1} Get-Pids ${policyId1}
|
||||
@@ -92,7 +92,7 @@ Proxy-Policy-deny-00003
|
||||
${policyId2} Get-Pids ${policyId2}
|
||||
${policyId2} Set Variable ${policyId2}[0]
|
||||
insert_policyId_to_file1 deny_profileId1 ${profiledId}
|
||||
#insert_policyId_to_file1 deny_objectId2 ${objectId}
|
||||
insert_policyId_to_file1 deny_objectId2 ${objectId}
|
||||
insert_policyId_to_file1 deny_objectId3 ${objectId1}
|
||||
insert_policyId_to_file1 intercept_deny_policyId2 ${policyId1}
|
||||
insert_policyId_to_file1 deny_policyId2 ${policyId2}
|
||||
@@ -239,14 +239,14 @@ Proxy-Policy-deny-00008
|
||||
Comment 创建引用文件
|
||||
${response} CreatePolicyFile2 ${url} ${responsePageFiles} 404china.html resPages
|
||||
${profiledId} Get From Dictionary ${response} profileId
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*.tianya.cn
|
||||
Comment 创建fqdn2
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*tianya.cn
|
||||
${rescode} ${objectId3} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=bbs.tianya.cn
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=tianya.cn
|
||||
${rescode} ${objectId4} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建应答头
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=*UTF-8|Content-Type
|
||||
Comment 创建应答头2
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=text/html*|Content-Type
|
||||
${rescode} ${objectId5} AddObject2 ${1} ${objectDict}
|
||||
Comment Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"HTTP"} filterList=${objectId}|TSG_FIELD_HTTP_HOST isValid=${1} appIdObjects=${HTTP_ID}
|
||||
@@ -314,7 +314,7 @@ Proxy-Policy-deny-00010
|
||||
Comment 创建请求头
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=text/html|Content-Type
|
||||
${rescode} ${objectId2} AddObject2 ${1} ${objectDict}
|
||||
Comment #创建引用文件
|
||||
Comment 创建引用文件
|
||||
${response} CreatePolicyFile2 ${url} ${responsePageFiles} 404english.html resPages
|
||||
${profiledId} Get From Dictionary ${response} profileId
|
||||
Comment Comment 创建拦截策略
|
||||
@@ -477,10 +477,10 @@ Proxy-Policy-deny-00015
|
||||
Proxy-Policy-deny-00016
|
||||
[Tags] Sub Objects层级
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$www.stewart.com
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$mt.meipai.com
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=*art.com/en.html
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=*mt.meipai.com/
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
${addItemList} Create List ${objectId1}
|
||||
${objectDict1} Create Dictionary objectType=url isValid=${1} subObjectIds=${addItemList}
|
||||
@@ -489,13 +489,13 @@ Proxy-Policy-deny-00016
|
||||
${response} CreatePolicyFile2 ${url} ${responsePageFiles} 404china.html resPages
|
||||
${profiledId} Get From Dictionary ${response} profileId
|
||||
Comment Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny-0016 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId1} AddPolicies 1 ${policyDict} v2
|
||||
${policyId1} Get-Pids ${policyId1}
|
||||
${policyId1} Set Variable ${policyId1}[0]
|
||||
Comment 创建deny策略
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-deny-00003 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","html_profile":${profiledId},"code":404,"protocol":"HTTP"} filterList=${objectId2}|TSG_FIELD_HTTP_URL isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-deny-000016 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","html_profile":${profiledId},"code":404,"protocol":"HTTP"} filterList=${objectId2}|TSG_FIELD_HTTP_URL isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId2} AddPolicies 1 ${policyDict} v2
|
||||
${policyId2} Get-Pids ${policyId2}
|
||||
@@ -525,7 +525,7 @@ Proxy-Policy-deny-00017
|
||||
${objectDict} Create Dictionary objectType=keywords isValid=${1} addItemList=mnbv
|
||||
${rescode} ${object_body_Id} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建deny策略
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-deny-00016 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${object_fqdn_Id}|TSG_FIELD_HTTP_HOST,${object_url_Id}|TSG_FIELD_HTTP_URL,${object_qq_Id}|TSG_FIELD_HTTP_REQ_HDR,${object_yd_Id}|TSG_FIELD_HTTP_RES_HDR,${object_body_Id}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-deny-00017 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${object_fqdn_Id}|TSG_FIELD_HTTP_HOST,${object_url_Id}|TSG_FIELD_HTTP_URL,${object_qq_Id}|TSG_FIELD_HTTP_REQ_HDR,${object_yd_Id}|TSG_FIELD_HTTP_RES_HDR,${object_body_Id}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId2} AddPolicies 1 ${policyDict} v2
|
||||
${policyId2} Get-Pids ${policyId2}
|
||||
@@ -555,13 +555,13 @@ Proxy-Policy-deny-00018
|
||||
${objectDict} Create Dictionary objectType=keywords isValid=${1} addItemList=NOFOLLOW
|
||||
${rescode} ${object_body_Id} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${object_fqdn_Id}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-deny-0018 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${object_fqdn_Id}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId1} AddPolicies 1 ${policyDict} v2
|
||||
${policyId1} Get-Pids ${policyId1}
|
||||
${policyId1} Set Variable ${policyId1}[0]
|
||||
Comment 创建deny策略
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-deny-00017 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${object_fqdn_Id}|TSG_FIELD_HTTP_HOST,${object_url_Id}|TSG_FIELD_HTTP_URL,${object_qq_Id}|TSG_FIELD_HTTP_REQ_HDR,${object_yd_Id}|TSG_FIELD_HTTP_RES_HDR,${object_body_Id}|TSG_FIELD_HTTP_RES_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-deny-00018 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${object_fqdn_Id}|TSG_FIELD_HTTP_HOST,${object_url_Id}|TSG_FIELD_HTTP_URL,${object_qq_Id}|TSG_FIELD_HTTP_REQ_HDR,${object_yd_Id}|TSG_FIELD_HTTP_RES_HDR,${object_body_Id}|TSG_FIELD_HTTP_RES_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId2} AddPolicies 1 ${policyDict} v2
|
||||
${policyId2} Get-Pids ${policyId2}
|
||||
|
||||
@@ -48,6 +48,8 @@ Proxy-Policy-allow-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003.bat
|
||||
... ELSE set variable curl -kv \ https://csgo500.com/
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003.bat
|
||||
... ELSE set variable curl -kv \ https://csgo500.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List csgo500 Tango Secure Gateway CA
|
||||
... ELSE Create List csgo500 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -66,6 +68,8 @@ Proxy-Policy-allow-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003_3.bat
|
||||
... ELSE set variable curl -kv https://lunar.pw/
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003_3.bat
|
||||
... ELSE set variable curl -kv https://lunar.pw/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Лунный календарь Tango Secure Gateway CA
|
||||
... ELSE Create List МАРТА Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
@@ -42,14 +42,14 @@ SecurityPolicy-Deny-Dns-00001
|
||||
|
||||
SecurityPolicy-Deny-Dns-00002
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable nslookup -d www.plymouthbaywinery.com 8.8.8.8
|
||||
... ELSE set variable nslookup -debug -query=A \ www.plymouthbaywinery.com
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable nslookup -d www.arctictrucks.ru 8.8.8.8
|
||||
... ELSE set variable nslookup -debug -query=A \ www.arctictrucks.ru
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 192.168.41.186 www.jd.com ttl = 500
|
||||
... ELSE Create List 192.168.41.186 www.jd.com ttl = 500
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable nslookup -d sunnybrooktroutclub.com 8.8.8.8
|
||||
... ELSE set variable nslookup -debug -query=A \ sunnybrooktroutclub.com
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable nslookup -d wifika.ru 8.8.8.8
|
||||
... ELSE set variable nslookup -debug -query=A \ wifika.ru
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 192.168.41.186 www.jd.com ttl = 500
|
||||
... ELSE Create List 192.168.41.186 www.jd.com ttl = 500
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
@@ -32,6 +32,8 @@ SecurityPolicy-Deny-Http-00002
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00002.bat
|
||||
... ELSE set variable curl http://bellaircraftmuseum.org/
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00002.bat
|
||||
... ELSE set variable curl http://bellaircraftmuseum.org/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -52,6 +54,9 @@ SecurityPolicy-Deny-Http-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00003_2.bat
|
||||
... ELSE set variable curl http://www.gotohoroscope.com/daily-horoscope.html
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00003_2.bat
|
||||
... ELSE set variable curl http://www.gotohoroscope.com/daily-horoscope.html
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Sorry, the page you requested does not exist, has been deleted, or is temporarily unavailable
|
||||
... ELSE Create List Sorry, the page you requested does not exist, has been deleted, or is temporarily unavailable
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -91,6 +96,11 @@ SecurityPolicy-Deny-Http-00005
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Deny-Http-00006
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00006.bat
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'http://www.baidu.com/' http://egypt.travel/ru
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 网站被阻断
|
||||
... ELSE Create List 网站被阻断
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00006.bat
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'http://www.baidu.com/' http://egypt.travel/ru
|
||||
@@ -167,44 +177,44 @@ SecurityPolicy-Deny-Http-00012
|
||||
SecurityPolicy-Deny-Http-00013
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00013.bat
|
||||
... ELSE set variable curl http://www.ziroom.com/life/index
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -w %{http_code} www.ziroom.com/life/index -o /dev/null
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 000
|
||||
... ELSE Create List 000
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00013_1.bat
|
||||
... ELSE set variable curl http://blog.cnstock.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Time out
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -w %{http_code} blog.cnstock.com
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 000
|
||||
... ELSE Create List 000
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00013_2.bat
|
||||
... ELSE set variable curl http://www.sinovision.net/portal.php?mod=center
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -w %{http_code} www.sinovision.net/portal.php?mod=center
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 000
|
||||
... ELSE Create List 000
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00013_3.bat
|
||||
... ELSE set variable curl http://nlr.ru/nlr_visit/RA549/novosti
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -w %{http_code}
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 000
|
||||
... ELSE Create List 000
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Deny-Http-00014
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00014.bat
|
||||
... ELSE set variable curl -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{"requestbody":"testDenyHttp0014","setcook":"12345678","contenttype": "content-type","responsebody": "testDenyHttp0014"}" http://open.node.com/go
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Not Found
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Timed out
|
||||
... ELSE Create List Connection reset by peer
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 改变阻断策略
|
||||
${policyDict} Create Dictionary policyId=${deny_http_policyId13} policyName=SecurityPolicy-Deny-Http-00014_1 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"HTTP","method":"drop"} filterList=${deny_http_objectId40}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyId=${deny_http_policyId13} policyName=SecurityPolicy-Deny-Http-00014_1 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"HTTP","method":"rst"} filterList=${deny_http_objectId40}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00014.bat
|
||||
... ELSE set variable curl -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{"requestbody":"biubiubiud","setcook":"12345678","contenttype": "content-type","responsebody": "biubiubiud"}" http://open.node.com/go
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Not Found
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
SecurityPolicy-Deny-Http-00015
|
||||
@@ -227,17 +237,20 @@ SecurityPolicy-Deny-Http-00015
|
||||
SecurityPolicy-Deny-Http-00016
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00016.bat
|
||||
... ELSE set variable curl -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{"requestbody":"mnbv","setcook":"asdf","contenttype": "content-type","responsebody": "adzx"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'http://www.baidu.com/' http://open.node.com/go
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 404
|
||||
... ELSE Create List 404
|
||||
... ELSE set variable curl -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{"requestbody":"DenyHttp0016","setcook":"asdf","contenttype": "charsetDeny0016","responsebody": "adzx"}" -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'http://www.baidu.com/' http://open.node.com/go
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 000
|
||||
... ELSE Create List 000
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Deny-Http-00017
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00017.bat
|
||||
... ELSE set variable curl -kv --cookie "*_ga=GA1.2.721078436.1587543528; _gid=GA1.2.916148851.1587543528; _gat=1; _ym_uid=1587543532244912958; _ym_d=1587543532; _ym_isad=2" --referer 'http://www.baidu.com/' \ http://smspunch.net/send-free-sms.aspx
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl -kv --cookie "*_ga=GA1.2.721078436.1587543528; _gid=GA1.2.916148851.1587543528; _gat=1; _ym_uid=1587543532244912958; _ym_d=1587543532; _ym_isad=2" --referer 'http://www.baidu.com/' \ http://smspunch.net/send-free-sms.aspx -w %{http_code}
|
||||
sleep 3
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_HTTP_00017.bat
|
||||
... ELSE set variable curl -kv --cookie "*_ga=GA1.2.721078436.1587543528; _gid=GA1.2.916148851.1587543528; _gat=1; _ym_uid=1587543532244912958; _ym_d=1587543532; _ym_isad=2" --referer 'http://www.baidu.com/' \ http://smspunch.net/send-free-sms.aspx -w %{http_code}
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 000
|
||||
... ELSE Create List 000
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Deny-Http-00018
|
||||
|
||||
@@ -49,25 +49,25 @@ SecurityPolicy-Deny-Ssl-00002
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Deny-Ssl-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
# Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00003.bat
|
||||
... ELSE set variable curl https://www.utarc.org/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://austinama.org/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out
|
||||
... ELSE Create List timed out
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00003_3.bat
|
||||
... ELSE set variable curl https://www.nq4y.net/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.carambola.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out
|
||||
... ELSE Create List timed out
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Deny-Ssl-00004
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00004.bat
|
||||
... ELSE set variable curl https://www.prlib.ru/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out
|
||||
... ELSE Create List timed out
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 改变阻断策略
|
||||
${policyDict} Create Dictionary policyId=${deny_ssl_policyId3} policyName=SecurityPolicy-Deny-Ssl-00004 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SSL","method":"drop"} filterList=${deny_ssl_objectId6}|TSG_FIELD_SSL_SAN,${deny_ssl_objectId6}|TSG_FIELD_SSL_SNI,${deny_ssl_objectId6}|TSG_FIELD_SSL_CN isValid=${1} appIdObjects=${SSL_ID}
|
||||
@@ -76,23 +76,23 @@ SecurityPolicy-Deny-Ssl-00004
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00004.bat
|
||||
... ELSE set variable curl https://www.prlib.ru/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection reset by peer
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out
|
||||
... ELSE Create List timed out
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
SecurityPolicy-Deny-Ssl-00005
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00005.bat
|
||||
... ELSE set variable curl https://www.leisu.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection was reset
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.leisu.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out
|
||||
... ELSE Create List timed out
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 改变阻断策略
|
||||
${policyDict} Create Dictionary policyId=${deny_ssl_policyId4} policyName=SecurityPolicy-Deny-Ssl-00005-1 destination=166860|TSG_SECURITY_DESTINATION_ADDR policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SSL","method":"drop"} filterList=${deny_ssl_objectId7}|TSG_FIELD_SSL_SAN,${deny_ssl_objectId7}|TSG_FIELD_SSL_SNI,${deny_ssl_objectId7}|TSG_FIELD_SSL_CN isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyId=${deny_ssl_policyId4} policyName=SecurityPolicy-Deny-Ssl-00005-1 destination=3309|TSG_SECURITY_DESTINATION_ADDR policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SSL","method":"drop"} filterList=${deny_ssl_objectId7}|TSG_FIELD_SSL_SAN,${deny_ssl_objectId7}|TSG_FIELD_SSL_SNI,${deny_ssl_objectId7}|TSG_FIELD_SSL_CN isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Deny_SSL_00005.bat
|
||||
... ELSE set variable curl https://www.leisu.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection was reset
|
||||
... ELSE set variable curl --connect-timeout 5 -m 10 -kv --referer 'http://www.baidu.com/' \ https://www.leisu.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List timed out
|
||||
... ELSE Create List timed out
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
@@ -18,7 +18,7 @@ Proxy-Policy-deny-00001
|
||||
... ELSE Create List 重新开始 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 改变拦截策略
|
||||
${policyDict} Create Dictionary policyId=${intercept_deny_policyId} source=${deny_objectId46}|TSG_SECURITY_SOURCE_LOCATION policyName=SecurityPolicy-Intercept-deny-1 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${deny_objectId47}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyId=${intercept_deny_policyId} source=${deny_objectId46}|TSG_SECURITY_SOURCE_LOCATION policyName=SecurityPolicy-Intercept-deny-1 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${deny_objectId47}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
Comment 改变阻断策略
|
||||
@@ -35,7 +35,7 @@ Proxy-Policy-deny-00001
|
||||
Proxy-Policy-deny-00002
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00002.bat
|
||||
... ELSE set variable curl -kv \ \ https://www.hugedomains.com/domain_profile.cfm?d=bagarres&e=com
|
||||
... ELSE set variable curl -kv \ \ https://kingidentity.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Sorry, the page you requested does not exist, has been deleted, or is temporarily unavailable Tango Secure Gateway CA
|
||||
... ELSE Create List Sorry, the page you requested does not exist, has been deleted, or is temporarily unavailable Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -43,13 +43,15 @@ Proxy-Policy-deny-00002
|
||||
Proxy-Policy-deny-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00003.bat
|
||||
... ELSE set variable curl -kv \ https://railways.kz/
|
||||
... ELSE set variable curl -kv \ https://myamber.ae/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用 Tango Secure Gateway CA
|
||||
... ELSE Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00003_1.bat
|
||||
... ELSE set variable curl -kv \ https://creativetravelgroup.com/
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00003_1.bat
|
||||
... ELSE set variable curl -kv \ https://creativetravelgroup.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用 Tango Secure Gateway CA
|
||||
... ELSE Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -106,9 +108,6 @@ Proxy-Policy-deny-00006
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00006.bat
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'https://www.baidu.com/' https://www.playgroundsessions.com/about/software-features
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 明天大涨 Tango Secure Gateway CA
|
||||
... ELSE Create List 明天大涨 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00006.bat
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'https://www.baidu.com/' https://www.playgroundsessions.com/about/software-features
|
||||
@@ -135,15 +134,17 @@ Proxy-Policy-deny-00008
|
||||
${policyDict} Create Dictionary policyId=${intercept_deny_policyId7} policyName=SecurityPolicy-Intercept-deny policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"HTTP"} filterList=${deny_objectId51}|TSG_FIELD_HTTP_HOST isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
sleep 5
|
||||
Comment 改变阻断策略
|
||||
${policyDict} Create Dictionary policyId=${deny_policyId7} policyName=Proxy-Policy-deny-00004-1 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"qwertyuiop","code":404,"protocol":"HTTP"} filterList=${deny_objectId52}|TSG_FIELD_HTTP_URL,${deny_objectId53}|TSG_FIELD_HTTP_REQ_HDR isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyId=${deny_policyId7} policyName=Proxy-Policy-deny-00004-1 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"qwertyuiop","code":404,"protocol":"HTTP"} filterList=${deny_objectId52}|TSG_FIELD_HTTP_URL,${deny_objectId53}|TSG_FIELD_HTTP_RES_HDR isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
sleep 5
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00008_1.bat
|
||||
... ELSE set variable curl http://bbs.tianya.cn/list-16-1.shtml
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用
|
||||
... ELSE Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List qwertyuiop
|
||||
... ELSE Create List qwertyuiop
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-deny-00009
|
||||
@@ -155,6 +156,9 @@ Proxy-Policy-deny-00009
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-deny-00010
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00010.bat
|
||||
... ELSE set variable curl http://www.duckduckmoose.com/
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00010.bat
|
||||
... ELSE set variable curl http://www.duckduckmoose.com/
|
||||
@@ -218,6 +222,7 @@ Proxy-Policy-deny-00014
|
||||
${policyDict} Create Dictionary policyId=${deny_policyId13} policyName=Proxy-Policy-deny-00014-1 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${deny_objectId54}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
sleep 3
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00014_1.bat
|
||||
... ELSE set variable curl -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{"requestbody":"denyTest0014","setcook":"12345678","contenttype": "content-type","responsebody": "Response Body"}" http://open.node.com/go
|
||||
@@ -233,11 +238,12 @@ Proxy-Policy-deny-00015
|
||||
... ELSE Create List Connection was reset
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 改变阻断策略
|
||||
${policyDict} Create Dictionary policyId=${deny_policyId14} policyName=Proxy-Policy-deny-00014-1 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${deny_objectId55}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
${policyDict} Create Dictionary policyId=${deny_policyId14} policyName=Proxy-Policy-deny-00015-1 policyType=pxy_manipulation policyDesc=autotest action=deny userRegion={"method":"block","message":"涨涨涨涨","code":404,"protocol":"HTTP"} filterList=${deny_objectId55}|TSG_FIELD_HTTP_REQ_CONTENT isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00015.bat
|
||||
sleep 5
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00015_1.bat
|
||||
... ELSE set variable curl -H "Content-Type:application/json;charset=UTF-8" -X POST -d "{"requestbody":"lkjh","setcook":"qeqew","contenttype": "content-type","responsebody": "deny015"}" http://open.node.com/go
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset
|
||||
... ELSE Create List Connection was reset
|
||||
@@ -246,10 +252,7 @@ Proxy-Policy-deny-00015
|
||||
Proxy-Policy-deny-00016
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00018.bat
|
||||
... ELSE set variable curl -kv https://www.stewart.com/en.html
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00018.bat
|
||||
... ELSE set variable curl -kv https://www.stewart.com/en.html
|
||||
... ELSE set variable curl -kv https://mt.meipai.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用 Tango Secure Gateway CA
|
||||
... ELSE Create List 对不起,您请求的页面不存在、或已被删除、或暂时不可用 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -266,6 +269,8 @@ Proxy-Policy-deny-00018
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00017.bat
|
||||
... ELSE set variable curl -kv --cookie "test%20cookie=null; timezoneoffset=-480; ASP.NET_SessionId=sta2b3gxpxzqei3by1ka3qsa; visid_incap_1010467=Iu/pLzeoTnGn2VDjWdP9GpoBGF8AAAAAQUIPAAAAAADzSLZtZ1tZ/Rbjfct3Nq69" --referer 'https://www.baidu.com/' \ https://www.umusicpub.com/au/
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_Deny_00017.bat
|
||||
... ELSE set variable curl -kv --cookie "test%20cookie=null; timezoneoffset=-480; ASP.NET_SessionId=sta2b3gxpxzqei3by1ka3qsa; visid_incap_1010467=Iu/pLzeoTnGn2VDjWdP9GpoBGF8AAAAAQUIPAAAAAADzSLZtZ1tZ/Rbjfct3Nq69" --referer 'https://www.baidu.com/' \ https://www.umusicpub.com/au/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Connection was reset Tango Secure Gateway CA
|
||||
... ELSE Create List Connection reset by peer Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
@@ -54,7 +54,7 @@ SecurityPolicy-Momitor-Mail-00002
|
||||
${Smtp服务器端口} Set Variable 25
|
||||
${邮箱账号} Set Variable ${mailqqAccount}
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable Простопорно
|
||||
${邮件主题} Set Variable MonitorMailTest00002
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/朱明明测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -159,9 +159,9 @@ SecurityPolicy-Momitor-Mail-00006
|
||||
${Smtp服务器端口} Set Variable 25
|
||||
${邮箱账号} Set Variable ${mailqqAccount}
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable Tomorrow
|
||||
${邮件主题} Set Variable Tomatorhahaha
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -178,7 +178,7 @@ SecurityPolicy-Momitor-Mail-00007
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable планируете
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -207,6 +207,7 @@ SecurityPolicy-Momitor-Mail-00008
|
||||
${policyDict} Create Dictionary policyId=${monitor_mail_policyId7} policyName=SecurityPolicy-Monitor-Mail-00008-1 policyType=tsg_security policyDesc=autotest action=monitor userRegion={"protocol":"MAIL"} filterList=${monitor_mail_objectId37}|TSG_FIELD_MAIL_TO,${monitor_mail_objectId12}|TSG_FIELD_MAIL_SUBJECT isValid=${1} appIdObjects=${MAIL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} UpdatePolicies 1 ${policyDict} v2 update
|
||||
sleep 5
|
||||
Comment 功能端验证
|
||||
${Smtp服务器} Set Variable smtp.qq.com
|
||||
${Smtp服务器端口} Set Variable 25
|
||||
@@ -230,7 +231,7 @@ SecurityPolicy-Momitor-Mail-00009
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable 马上又过一天
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -247,7 +248,7 @@ SecurityPolicy-Momitor-Mail-00010
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable weekend
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -264,7 +265,7 @@ SecurityPolicy-Momitor-Mail-00011
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable 邮件发送成功
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -281,7 +282,7 @@ SecurityPolicy-Momitor-Mail-00012
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable ограничительным
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -298,7 +299,7 @@ SecurityPolicy-Momitor-Mail-00013
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable 963258zxcvb
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -315,7 +316,7 @@ SecurityPolicy-Momitor-Mail-00014
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable 一小时一天一个月
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
@@ -332,7 +333,7 @@ SecurityPolicy-Momitor-Mail-00015
|
||||
${邮箱密码} Set Variable ${mailqqPasswd}
|
||||
${邮件主题} Set Variable 要留清白在人间
|
||||
${发送者} Set Variable ${mailqqAccount}
|
||||
${附件} Set Variable ["${mailpath}/姬巍川测试文件.txt"]
|
||||
${附件} Set Variable ["${mailpath}/何冰凝测试文件.txt"]
|
||||
${接收者} Set Variable ["${mailAccountGeedge}"]
|
||||
${抄送者} Set Variable ["${mailAccountGeedge}"]
|
||||
${密送者} Set Variable ["${mailAccountGeedge}"]
|
||||
|
||||
@@ -38,7 +38,7 @@ Proxy-Policy-allow-00002
|
||||
|
||||
Proxy-Policy-allow-00003
|
||||
#删除对象
|
||||
#${objectids} set Variable ${allow_objectId2}
|
||||
${objectids} set Variable ${allow_objectId2}
|
||||
${objectids} set Variable ${allow_objectId3}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId2}]}
|
||||
|
||||
@@ -26,12 +26,12 @@ SecurityPolicy-Deny-Dns-00001
|
||||
|
||||
SecurityPolicy-Deny-Dns-00002
|
||||
#删除对象
|
||||
# ${objectids} set Variable ${deny_dns_objectId1}
|
||||
${objectids} set Variable ${deny_dns_objectId1}
|
||||
#删除策略
|
||||
${policyIds} Create List {"policyType":"tsg_security","policyIds":[${deny_dns_policyId1}]}
|
||||
${s} Convert to String ${deny_dns_policyId1}
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} dns_qname yhd.com
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} dns_qname vk.com
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} dns_qname www.arctictrucks.ru
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} dns_qname wifika.ru
|
||||
|
||||
SecurityPolicy-Deny-Dns-00003
|
||||
#删除对象
|
||||
|
||||
@@ -28,7 +28,7 @@ SecurityPolicy-Deny-Http-00001
|
||||
|
||||
SecurityPolicy-Deny-Http-00002
|
||||
#删除对象
|
||||
#${objectids} set Variable ${deny_http_objectId1}
|
||||
${objectids} set Variable ${deny_http_objectId1}
|
||||
#删除策略
|
||||
${policyIds} Create List {"policyType":"tsg_security","policyIds":[${deny_http_policyId1}]}
|
||||
${s} Convert to String ${deny_http_policyId1}
|
||||
|
||||
@@ -36,12 +36,12 @@ SecurityPolicy-Deny-Ssl-00002
|
||||
|
||||
SecurityPolicy-Deny-Ssl-00003
|
||||
#删除对象
|
||||
#${objectids} set Variable ${deny_ssl_objectId2}
|
||||
${objectids} set Variable ${deny_ssl_objectId2}
|
||||
#删除策略
|
||||
${policyIds} Create List {"policyType":"tsg_security","policyIds":[${deny_ssl_policyId2}]}
|
||||
${s} Convert to String ${deny_ssl_policyId2}
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni astanait
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni edu
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni austinama.org
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni assegaimedia.com
|
||||
|
||||
SecurityPolicy-Deny-Ssl-00004
|
||||
#删除对象
|
||||
|
||||
@@ -32,26 +32,26 @@ Proxy-Policy-deny-00002
|
||||
#删除文件
|
||||
${profiledId} set Variable ${deny_profileId}
|
||||
#删除对象
|
||||
#${objectids} set Variable ${deny_objectId1}
|
||||
${objectids} set Variable ${deny_objectId1}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_deny_policyId1}]}
|
||||
${policyId2} set Variable {"policyType":"pxy_manipulation","policyIds":[${deny_policyId1}]}
|
||||
${policyIds} Create List ${policyId1} ${policyId2}
|
||||
${s} Convert to String ${deny_policyId1}
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host hugedomains
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host kingidentity.com
|
||||
|
||||
Proxy-Policy-deny-00003
|
||||
#删除文件
|
||||
${profiledId} set Variable ${deny_profileId1}
|
||||
#删除对象
|
||||
#${objectids} set Variable ${deny_objectId2}
|
||||
${objectids} set Variable ${deny_objectId2}
|
||||
${objectids} set Variable ${deny_objectId3}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_deny_policyId2}]}
|
||||
${policyId2} set Variable {"policyType":"pxy_manipulation","policyIds":[${deny_policyId2}]}
|
||||
${policyIds} Create List ${policyId1} ${policyId2}
|
||||
${s} Convert to String ${deny_policyId2}
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host railways.kz
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host myamber.ae
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host creativetravelgroup.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host www.hinabian.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host smithsonianjourneys
|
||||
|
||||
Reference in New Issue
Block a user