Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Create a Rule

  1. Last updated
  2. Save as PDF

Creating a rule includes several activities that are related to the different elements of a rule.

The Add Rule window is provided for creating a rule. It allows you to complete the activities for configuring the rule elements in the order that you prefer.

You can, for example, begin with naming and enabling a rule and then add the criteria, the action, and an event.
 

Name and Enable a Rule

Configure name and enabling as general settings for a rule.

Task

  1. Select Policy | Rule Sets.
  2. On the rule sets tree, select a rule set for the new rule.
  3. Click Add Rule above the settings pane.
    The Add Rule window opens with the Name step selected.
  4. Configure general settings for the rule:
    1. In the Name field, type a name for the rule.
    2.  Select Enable rule to let the rule be processed when its rule set is processed.
    3. [Optional] In the Comment field, type a plain-text comment on the rule.
      Continue with adding the rule elements.

Add the Rule Criteria

Add the rule criteria to determine when a rule is applied.

Task

  1. In the Add Rule window, click Rule Criteria.
  2. In the Apply this rule section, select when the rule is applied:
    • Always — The rule is always applied.
      Continue with adding another element, for example, the rule action.
    • If the following criteria is matched — The rule is applied if the configured criteria is matched.
      Continue with the next step.
  3. In the Criteria section, click Add and select a criteria group from the drop-down menu.

The Add Criteria window opens displaying items that are suitable for configuring criteria from the selected group.

NOTE: To display items for all criteria, select Advanced criteria.

The window has three columns:

  • Left column for selecting a property
  • Middle column for selecting an operator
  • Right column for selecting an operand

The currently selected elements are displayed at the top of each column under Selected property, Selected operator, and Compare with.

The window supports you in selecting suitable elements by automatically adapting the lists in the other columns after you have selected an item in one column. Then the other columns show only items that are suitable for being configured with the selected item.

You can begin by selecting an item from the left or right column. Accordingly, steps 4 to 6 could also be completed in a different order.

Best practice: If your criteria is to use a list as an operand, begin with selecting this list from the right column.

  1. Select a property
    1. From the list in the left column, select an item or leave the one that is preselected (if there is any).

NOTE: You can filter the list and add self-configured properties.

  1. [Conditional] If you have selected a property that requires settings, select settings from the Settings drop-down list that is displayed with the property or leave the preconfigured settings.
  2.  [Conditional] If you have selected a property that requires the setting of parameters, click Parameters below the property name and work with the options in the window that opens to set values for all required parameters.
  1. Select an operator from the list in the middle column or leave the one that is preselected (if there is any).
  2. Select an operand from the list in the right column or leave the one that is preselected (if there is any). If the list is empty, type a suitable value, for example, a number.

NOTE: To change the type of operands that are displayed, select a type from the list at the top of the column.

After selecting an individual operand or a type of operands, the lists in the middle and left columns are adapted to show suitable operators and properties.

  1. Click OK to close the Add Criteria window.
    The new criteria appears in the Add Rule window.

    If you want to configure complex criteria, repeat steps 3 to 6 to configure more criteria parts.

    Connect criteria parts by AND or OR, which are then provided as options. For three or more criteria parts, type parentheses to indicate how they are logically connected in the Criteria combination field, which appears then.

    Continue with adding another element, for example, the rule action.

Add the Rule Action

Add the action that is executed if the rule criteria matches.

Task

  1. In the Add Rule window, click Action.
  2. From the Action list, select one of the following actions:
    • Continue — Continues with processing the next rule
    • Block — Blocks access to an object and stops processing rules
    • Redirect — Redirects the client that requested access to an object to another object
    • Authenticate — Stops processing the current cycle and sends an authentication request
    • Stop Rule Set — Stops processing the current rule set and continues with the next rule set
    • Stop Cycle — Stops processing the current cycle, but does not block access to the requested object
    • Remove — Removes the requested object and stops processing the current cycle
  3. [Conditional] If you have selected an action that requires settings (Block, Redirect, Authenticate), select settings from the Settings list.

NOTE: Click Add or Edit before selecting settings to open windows for adding new settings or editing existing settings.

  1. If you have created all required rule elements, but do not want to add an event:
    1.  [Optional] Click Summary to review what you have configured.
    2.  Click Finish.
      The Add Rule window closes and the new rule appears within the rule set you have selected for it.

Add a Rule Event

Optionally add one or more events that are executed if the rule criteria matches.

Task

  1. In the Add Rule window, click Events.
  2. In the Events section, click Add and select Events from the drop-down list.
    The Add Event window opens.
  3. From the Event list, select an event.

NOTE: To filter the list, type a filtering term in the input field above the list.

  1. [Conditional] If you have selected an event that requires settings, select settings from the Settings list.

NOTE: Click Add or Edit before selecting settings to open windows for adding new settings or for editing existing settings.

  1. [Conditional] If you have selected an event that requires the setting of parameters, click Parameters and work with the options in the window that opens to set values for all required parameters.
  2. Click OK.
    The Add Event window closes and the new event appears in the Events list.
  3.  If this is the last of the adding procedures:
    1. [Optional] Click Summary to review what you have configured.
    2. Click Finish.
      The Add Rule window closes and the new rule appears within the rule set you have selected for it.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.