调整,fqdn_category无法添加问题,补充代理白名单用例,安全除Tango外其他证书用例
This commit is contained in:
hebingning
@@ -27,9 +27,9 @@ Proxy-Policy-allow-00001
|
||||
insert_policyId_to_file1 allow_policyId ${policyId2}
|
||||
|
||||
Proxy-Policy-allow-00002
|
||||
[Tags] cat右匹配
|
||||
[Tags] cat匹配
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*feishu.cn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*feishu.cn
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-allow policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
@@ -39,27 +39,27 @@ Proxy-Policy-allow-00002
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-allow-00002 policyType=pxy_manipulation policyDesc=autotest action=allow userRegion={"method":"allow","protocol":"HTTP"} filterList=${objectId}|TSG_FIELD_HTTP_HOST isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId2} AddPolicies 1 ${policyDict} v2
|
||||
insert_policyId_to_file1 allow_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 allow_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 intercept_allow_policyId1 ${policyId1}
|
||||
insert_policyId_to_file1 allow_policyId1 ${policyId2}
|
||||
|
||||
Proxy-Policy-allow-00003
|
||||
[Tags] url4种匹配
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*smzdm.com,*bilibili.com,*cheapair.com,*surfline.com
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*smzdm.com,*bilibili.com,*cheapair.com,*surfline.com
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=passport.bilibili.com/l*,$www.smzdm.com/jingxuan/,*air.com/hotels/,premium
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=csgo500,$znakitaro.ru/,*trou.ru/,lun*
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-allow policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-allow policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=114|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId1} AddPolicies 1 ${policyDict} v2
|
||||
Comment 创建allow策略
|
||||
${policyDict} Create Dictionary policyName=Proxy-Policy-allow-00003 policyType=pxy_manipulation policyDesc=autotest action=allow userRegion={"method":"allow","protocol":"HTTP"} filterList=${objectId1}|TSG_FIELD_HTTP_URL isValid=${1} appIdObjects=${HTTP_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId2} AddPolicies 1 ${policyDict} v2
|
||||
insert_policyId_to_file1 allow_objectId2 ${objectId}
|
||||
#insert_policyId_to_file1 allow_objectId2 ${objectId}
|
||||
insert_policyId_to_file1 allow_objectId3 ${objectId1}
|
||||
insert_policyId_to_file1 intercept_allow_policyId2 ${policyId1}
|
||||
insert_policyId_to_file1 allow_policyId2 ${policyId2}
|
||||
@@ -67,10 +67,10 @@ Proxy-Policy-allow-00003
|
||||
Proxy-Policy-allow-00004
|
||||
[Tags] 请求头左匹配
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*expeditionportal.com
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*123.com
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=al.com/4wd/
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=www.hao123.com
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建请求头
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=Mozilla/5.0*|User-Agent
|
||||
@@ -145,7 +145,7 @@ Proxy-Policy-allow-00007
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$www.woodsnap.com
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=about-us/frames
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=woodsnap
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建请求头
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=*Safari/537.36|User-Agent
|
||||
@@ -215,7 +215,7 @@ Proxy-Policy-allow-00009
|
||||
insert_policyId_to_file1 allow_policyId8 ${policyId2}
|
||||
|
||||
Proxy-Policy-allow-00010
|
||||
[Tags] 应答头字串匹配
|
||||
[Tags] 应答头子串匹配
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=*gf.com.cn
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
@@ -265,15 +265,15 @@ Proxy-Policy-allow-00011
|
||||
insert_policyId_to_file1 allow_policyId10 ${policyId2}
|
||||
|
||||
Proxy-Policy-allow-00012
|
||||
[Tags] cookie字串匹配
|
||||
[Tags] cookie四种匹配
|
||||
Comment 创建fqdn
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$www.virtuoso.com
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$www.virtuoso.com,$b.faloo.com,*readnovel.com,*hongxiu.com
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建url
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=destinations
|
||||
${objectDict} Create Dictionary objectType=url isValid=${1} addItemList=virtuoso.com,faloo,readnovel,hongxiu.com
|
||||
${rescode} ${objectId1} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建cookie
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=saltkey|Cookie
|
||||
${objectDict} Create Dictionary objectType=http_signature isValid=${1} addItemList=lQfQ_2132|Cookie,_csrfToken|Cookie,curr_url*|Cookie,*1406562325|Cookie,UM_*|Cookie
|
||||
${rescode} ${objectId2} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建拦截策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-allow policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
|
||||
@@ -25,13 +25,34 @@ SecurityPolicy-Intercept-Ssl-00001
|
||||
insert_policyId_to_file1 intercept_ssl_policyId ${policyId}
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00002
|
||||
[Tags] cat右匹配
|
||||
Comment 创建cat
|
||||
${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*momondo.ru
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
[Tags] category
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*momondo.ru
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建安全策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-Ssl-00002 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-Ssl-00002 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=166|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId} AddPolicies 1 ${policyDict} v2
|
||||
# insert_policyId_to_file1 intercept_ssl_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 intercept_ssl_policyId1 ${policyId}
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00003
|
||||
[Tags] fqdn other
|
||||
Comment fqdn Certificate
|
||||
${objectDict} Create Dictionary objectType=fqdn isValid=${1} addItemList=$www.xs8.cn
|
||||
${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-Ssl-00003 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1727,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=${objectId}|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId} AddPolicies 1 ${policyDict} v2
|
||||
insert_policyId_to_file1 intercept_ssl_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 intercept_ssl_policyId1 ${policyId}
|
||||
insert_policyId_to_file1 intercept_ssl_policyId2 ${policyId}
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00004
|
||||
[Tags] category Other Certificate to replace
|
||||
# ${objectDict} Create Dictionary objectType=fqdn_category isValid=${1} addItemList=*momondo.ru
|
||||
# ${rescode} ${objectId} AddObject2 ${1} ${objectDict}
|
||||
Comment 创建安全策略
|
||||
${policyDict} Create Dictionary policyName=SecurityPolicy-Intercept-Ssl-00004 policyType=tsg_security policyDesc=autotest action=intercept userRegion={"protocol":"SSL","keyring":1727,"decryption":1,"decrypt_mirror":{"enable":0,"mirror_profile":null}} filterList=167|TSG_FIELD_SSL_SNI isValid=${1} appIdObjects=${SSL_ID}
|
||||
log ${policyDict}
|
||||
${rescode} ${policyId} AddPolicies 1 ${policyDict} v2
|
||||
# insert_policyId_to_file1 intercept_ssl_objectId1 ${objectId}
|
||||
insert_policyId_to_file1 intercept_ssl_policyId3 ${policyId}
|
||||
|
||||
@@ -10,7 +10,7 @@ Resource ../../../02-Keyword/tsg_adc/FileOperation.robot
|
||||
Proxy-Policy-allow-00001
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00001.bat
|
||||
... ELSE set variable curl -kv https://mp.pipix.com/extra/user_agreement
|
||||
... ELSE set variable curl -kv https://mp.pipix.com
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 皮皮虾下载 Tango Secure Gateway CA
|
||||
... ELSE Create List 皮皮虾下载 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
@@ -26,35 +26,35 @@ Proxy-Policy-allow-00002
|
||||
Proxy-Policy-allow-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003.bat
|
||||
... ELSE set variable curl -kv \ https://www.smzdm.com/jingxuan/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List PC所有AB测试集合 Tango Secure Gateway CA
|
||||
... ELSE Create List PC所有AB测试集合 Tango Secure Gateway CA
|
||||
... ELSE set variable curl -kv \ https://csgo500.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List csgo500 Tango Secure Gateway CA
|
||||
... ELSE Create List csgo500 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003_1.bat
|
||||
... ELSE set variable curl -kv \ https://passport.bilibili.com/login
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 哔哩哔哩弹幕视频网 Tango Secure Gateway CA
|
||||
... ELSE Create List 哔哩哔哩弹幕视频网 Tango Secure Gateway CA
|
||||
... ELSE set variable curl -kv \ https://znakitaro.ru/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Тайные Tango Secure Gateway CA
|
||||
... ELSE Create List Новости Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003_2.bat
|
||||
... ELSE set variable curl -kv \ https://www.cheapair.com/hotels/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List search cheap hotels Tango Secure Gateway CA
|
||||
... ELSE Create List search cheap hotels Tango Secure Gateway CA
|
||||
... ELSE set variable curl -kv \ https://https://astrou.ru/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List каждые Tango Secure Gateway CA
|
||||
... ELSE Create List каждые Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00003_3.bat
|
||||
... ELSE set variable curl -kv https://www.surfline.com/category/premium
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List premium journalism. Get breaking news in all things surf Tango Secure Gateway CA
|
||||
... ELSE Create List premium journalism. Get breaking news in all things surf Tango Secure Gateway CA
|
||||
... ELSE set variable curl -kv https://lunar.pw/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Лунный календарь Tango Secure Gateway CA
|
||||
... ELSE Create List МАРТА Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00004
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00004.bat
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'https://www.baidu.com/' https://expeditionportal.com/4wd/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List as images are available in the DOM Tango Secure Gateway CA
|
||||
... ELSE Create List as images are available in the DOM Tango Secure Gateway CA
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'https://www.baidu.com/' https://www.hao123.com
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 上网从这里开始 Tango Secure Gateway CA
|
||||
... ELSE Create List 上网从这里开始 Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00005
|
||||
@@ -77,8 +77,8 @@ Proxy-Policy-allow-00007
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00007.bat
|
||||
... ELSE set variable curl -kv --user-agent "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.70 Safari/537.36" --referer 'https://www.baidu.com/' https://www.woodsnap.com/about-us/frames
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Google Tag Manager Tango Secure Gateway CA
|
||||
... ELSE Create List Google Tag Manager Tango Secure Gateway CA
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List WoodSnap Tango Secure Gateway CA
|
||||
... ELSE Create List WoodSnap Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00008
|
||||
@@ -93,16 +93,16 @@ Proxy-Policy-allow-00009
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00009.bat
|
||||
... ELSE set variable curl http://www.szse.cn/lawrules/index.html
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 党的建设
|
||||
... ELSE Create List 党的建设
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 信息订阅
|
||||
... ELSE Create List 信息订阅
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00010
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00010.bat
|
||||
... ELSE set variable curl http://www.gf.com.cn/about/intro
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 广发证券官方网站
|
||||
... ELSE Create List 广发证券官方网站
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 广发证券
|
||||
... ELSE Create List 广发证券
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00011
|
||||
@@ -117,8 +117,23 @@ Proxy-Policy-allow-00012
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00012.bat
|
||||
... ELSE set variable curl -kv --cookie "lQfQ_2132_saltkey=t8WY1oPe; lQfQ_2132_lastvisit=1595381790; lQfQ_2132_sid=vqXOg6; lQfQ_2132_lastact=1595385400%09forum.php%09image" --referer 'https://www.baidu.com/' \ https://www.virtuoso.com/destinations
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Object moved to Tango Secure Gateway CA
|
||||
... ELSE Create List Object moved to Tango Secure Gateway CA
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Object moved Tango Secure Gateway CA
|
||||
... ELSE Create List Object moved Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00012_2.bat
|
||||
... ELSE set variable curl -kv --cookie "UM_distinctid=177195d2f67c6b-06a24c7c217958-31346d-384000-177195d2f68bcf; CNZZDATA1279340671=485789824-1611035725-null%7C1611035725; Hm_lvt_76131d7573faf448cb1cfa2a37e6e3ff=1611038274; Hm_lpvt_76131d7573faf448cb1cfa2a37e6e3ff=1611038274; _csrfToken=hcK679WZm6N2HCbL4lEBi8VIc5GD6d3nVrFPZTDP; newstatisticUUID=1611038276_1033864685" --referer 'https://www.baidu.com/' \ https://www.hongxiu.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 红袖读书 Tango Secure Gateway CA
|
||||
... ELSE Create List Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00012_3.bat
|
||||
... ELSE set variable curl -kv --cookie "_csrfToken=qjRd8SBOkzGEgOrCAvpDpRLD0hqTSIoNDVZ6DpbU; newstatisticUUID=1611038238_1406562325" --referer 'https://www.baidu.com/' \ https://www.readnovel.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 小说阅读网 Tango Secure Gateway CA
|
||||
... ELSE Create List Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00012_4.bat
|
||||
... ELSE set variable curl -kv --cookie "curr_url=https%3A//b.faloo.com/; host4chongzhi=http%3a%2f%2fb.faloo.com%2f" --referer 'https://www.baidu.com/' \ https://b.faloo.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Tango Secure Gateway CA
|
||||
... ELSE Create List Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00013
|
||||
@@ -143,8 +158,8 @@ Proxy-Policy-allow-00013
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/ProxyPolicy_allow_00013_3.bat
|
||||
... ELSE set variable curl -kv https://www.vitalsource.com/textbooks
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List VitalSource Technologies Inc Tango Secure Gateway CA
|
||||
... ELSE Create List VitalSource Technologies Inc Tango Secure Gateway CA
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Shop online and downloadable Tango Secure Gateway CA
|
||||
... ELSE Create List Shop online and downloadable Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
Proxy-Policy-allow-00014
|
||||
|
||||
@@ -11,14 +11,30 @@ SecurityPolicy-Intercept-Ssl-00001
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Intercept_SSL_00001.bat
|
||||
... ELSE set variable curl -kv https://www.reviewpro.com/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Before Tango Secure Gateway CA
|
||||
... ELSE Create List Before Tango Secure Gateway CA
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List reviewpro Tango Secure Gateway CA
|
||||
... ELSE Create List reviewpro Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00002
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Intercept_SSL_00002.bat
|
||||
... ELSE set variable curl -kv https://www.momondo.ru/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Дешевые ави Tango Secure Gateway CA
|
||||
... ELSE Create List Дешевые ави Tango Secure Gateway CA
|
||||
... ELSE set variable curl -kv https://fenopy.se/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Fenopy Tango Secure Gateway CA
|
||||
... ELSE Create List Fenopy Tango Secure Gateway CA
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Intercept-Http-00003
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Intercept_SSL_00002_2.bat
|
||||
... ELSE set variable curl -kv https://www.xs8.cn/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List 言情小说吧 CA TRUST
|
||||
... ELSE Create List Book
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00004
|
||||
Comment 功能端验证HTTP验证
|
||||
${commandstr} run keyword if '${systemType}'=='Windows' set variable ${curlbatpath}/command/SecurityPolicy_Intercept_SSL_00002_3.bat
|
||||
... ELSE set variable curl -kv https://worldweapon.info/
|
||||
${stringlist} run keyword if '${systemType}'=='Windows' Create List Энциклопедия CA TRUST
|
||||
... ELSE Create List Camp Chippewa for Boys CA TRUST
|
||||
${rescode} SystemCommands ${commandstr} ${stringlist}
|
||||
|
||||
@@ -36,34 +36,34 @@ Proxy-Policy-allow-00002
|
||||
|
||||
Proxy-Policy-allow-00003
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId2}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId3}
|
||||
#${objectids} set Variable ${allow_objectId2}
|
||||
${objectids} set Variable ${allow_objectId3}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId2}]}
|
||||
${policyId2} set Variable {"policyType":"pxy_manipulation","policyIds":[${allow_policyId2}]}
|
||||
${policyIds} Create List ${policyId1} ${policyId2}
|
||||
${s} Convert to String ${allow_policyId2}
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host smzdm.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host bilibili.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host cheapair.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host surfline.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host csgo500
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host znakitaro.ru
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host astrou.ru
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host lunar
|
||||
|
||||
Proxy-Policy-allow-00004
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId4}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId5}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId5}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId6}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId3}]}
|
||||
${policyId2} set Variable {"policyType":"pxy_manipulation","policyIds":[${allow_policyId3}]}
|
||||
${policyIds} Create List ${policyId1} ${policyId2}
|
||||
${s} Convert to String ${allow_policyId3}
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host expeditionportal.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host hao123
|
||||
|
||||
Proxy-Policy-allow-00005
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId7}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId8}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId8}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId9}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId4}]}
|
||||
@@ -75,7 +75,7 @@ Proxy-Policy-allow-00005
|
||||
Proxy-Policy-allow-00006
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId10}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId11}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId11}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId12}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId5}]}
|
||||
@@ -87,7 +87,7 @@ Proxy-Policy-allow-00006
|
||||
Proxy-Policy-allow-00007
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId13}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId14}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId14}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId15}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId6}]}
|
||||
@@ -99,7 +99,7 @@ Proxy-Policy-allow-00007
|
||||
Proxy-Policy-allow-00008
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId16}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId17}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId17}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId18}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId7}]}
|
||||
@@ -111,7 +111,7 @@ Proxy-Policy-allow-00008
|
||||
Proxy-Policy-allow-00009
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId19}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId20}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId20}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId21}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId8}]}
|
||||
@@ -123,7 +123,7 @@ Proxy-Policy-allow-00009
|
||||
Proxy-Policy-allow-00010
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId22}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId23}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId23}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId24}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId9}]}
|
||||
@@ -135,7 +135,7 @@ Proxy-Policy-allow-00010
|
||||
Proxy-Policy-allow-00011
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId25}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId26}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId26}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId27}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId10}]}
|
||||
@@ -147,7 +147,7 @@ Proxy-Policy-allow-00011
|
||||
Proxy-Policy-allow-00012
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId28}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId29}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId29}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId30}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId11}]}
|
||||
@@ -155,11 +155,14 @@ Proxy-Policy-allow-00012
|
||||
${policyIds} Create List ${policyId1} ${policyId2}
|
||||
${s} Convert to String ${allow_policyId11}
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host www.virtuoso.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host www.hongxiu.com
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host readnovel
|
||||
GetLogList proxy_event_log ${starttime} ${endtime} ${testClentIP} ${s} http_host b.faloo.com
|
||||
|
||||
Proxy-Policy-allow-00013
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId31}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId32}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId32}
|
||||
#删除策略
|
||||
${policyId1} set Variable {"policyType":"tsg_security","policyIds":[${intercept_allow_policyId12}]}
|
||||
${policyId2} set Variable {"policyType":"pxy_manipulation","policyIds":[${allow_policyId12}]}
|
||||
@@ -173,7 +176,7 @@ Proxy-Policy-allow-00013
|
||||
Proxy-Policy-allow-00014
|
||||
#删除对象
|
||||
${objectids} set Variable ${allow_objectId33}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId34}
|
||||
${objectids} Catenate SEPARATOR=, ${allow_objectId34}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId35}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId36}
|
||||
${objectids} Catenate SEPARATOR=, ${objectids} ${allow_objectId37}
|
||||
|
||||
@@ -24,8 +24,24 @@ SecurityPolicy-Intercept-Ssl-00001
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00002
|
||||
#删除对象
|
||||
${objectids} set Variable ${intercept_ssl_objectId1}
|
||||
${objectids} set Variable ${EMPTY}
|
||||
#删除策略
|
||||
${policyIds} Create List {"policyType":"tsg_security","policyIds":[${intercept_ssl_policyId1}]}
|
||||
${s} Convert to String ${intercept_ssl_policyId1}
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni www.momondo.ru
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni fenopy.se
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00003
|
||||
#删除对象
|
||||
${objectids} set Variable ${intercept_ssl_objectId1}
|
||||
#删除策略
|
||||
${policyIds} Create List {"policyType":"tsg_security","policyIds":[${intercept_ssl_policyId2}]}
|
||||
${s} Convert to String ${intercept_ssl_policyId2}
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni xs8
|
||||
|
||||
SecurityPolicy-Intercept-Ssl-00004
|
||||
#删除对象
|
||||
${objectids} set Variable ${EMPTY}
|
||||
#删除策略
|
||||
${policyIds} Create List {"policyType":"tsg_security","policyIds":[${intercept_ssl_policyId3}]}
|
||||
${s} Convert to String ${intercept_ssl_policyId3}
|
||||
GetLogList security_event_log ${starttime} ${endtime} ${testClentIP} ${s} ssl_sni worldweapon.info
|
||||
Reference in New Issue
Block a user