The action for the rule chain would be set to Prevent.
example.
Figure 44
Example Rule Chain – Blocking Bad Logins
Example – Positive Security Model: Blocking a Form Submission with Unwanted Parameters
This rule chain blocks a form submission if the form has a request parameter other than formId
or if the value of formId contains more than 4 digits. To accomplish this, you would need two
rule chains:
The first rule chain contains two rules:
1.
The first rule identifies the URL where the form is submitted.
–
The second rule checks if Parameter Names does not match the name of the valid
–
parameter, formId. It uses the Equals String operator with the Not inversion check box
selected.
The second rule chain contains two rules:
2.
The first rule identifies the URL where the form is submitted.
–
Figure 44
shows the rule chain for this
Web Application Firewall Configuration | 271