List intrusion prevention rules
Lists all intrusion prevention rules assigned to a policy.
PolicyIntrusionPreventionRuleDetailsApi.listIntrusionPreventionRulesOnPolicy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.list_intrusion_prevention_rules_on_policy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.listIntrusionPreventionRulesOnPolicy([param1, param2, ...])
successful operation
Not authorized to view the policy.
The policy does not exist.
- Java
- Python
- JavaScript
import com.trendmicro.deepsecurity.ApiClient; import com.trendmicro.deepsecurity.Configuration; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.ApiException; import com.trendmicro.deepsecurity.api.PolicyIntrusionPreventionRuleDetailsApi; import com.trendmicro.deepsecurity.model.IntrusionPreventionRules; public class ListIntrusionPreventionRulesOnPolicyExample { public static void main(String[] args) { // Setup ApiClient defaultClient = Configuration.getDefaultApiClient(); defaultClient.setBasePath("YOUR HOST"); // Authentication ApiKeyAuth Legacy API Key = (ApiKeyAuth) defaultClient.getAuthentication("Legacy API Key"); Legacy API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } ApiKeyAuth Trend Micro Cloud One API Key = (ApiKeyAuth) defaultClient.getAuthentication("Trend Micro Cloud One API Key"); Trend Micro Cloud One API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } // Initialization // Set Any Required Values PolicyIntrusionPreventionRuleDetailsApi instance = new PolicyIntrusionPreventionRuleDetailsApi(); Integer policyID = 1; Boolean overrides = false; String apiVersion = "YOUR VERSION"; try { // Please replace the parameter values with yours IntrusionPreventionRules result = instance.listIntrusionPreventionRulesOnPolicy(policyID, overrides, apiVersion); System.out.println(result); } catch (ApiException e) { System.err.println("An exception occurred when calling PolicyIntrusionPreventionRuleDetailsApi.listIntrusionPreventionRulesOnPolicy"); e.printStackTrace(); } } }
- 200
{- "intrusionPreventionRules": [
- {
- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
]
}
Describe an intrusion prevention rule
Describe an intrusion prevention rule including policy-level overrides.
PolicyIntrusionPreventionRuleDetailsApi.describeIntrusionPreventionRuleOnPolicy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.describe_intrusion_prevention_rule_on_policy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.describeIntrusionPreventionRuleOnPolicy([param1, param2, ...])
path Parameters
successful operation
Not authorized to view the policy.
The policy or intrusion prevention rule does not exist.
- Java
- Python
- JavaScript
import com.trendmicro.deepsecurity.ApiClient; import com.trendmicro.deepsecurity.Configuration; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.ApiException; import com.trendmicro.deepsecurity.api.PolicyIntrusionPreventionRuleDetailsApi; import com.trendmicro.deepsecurity.model.IntrusionPreventionRule; public class DescribeIntrusionPreventionRuleOnPolicyExample { public static void main(String[] args) { // Setup ApiClient defaultClient = Configuration.getDefaultApiClient(); defaultClient.setBasePath("YOUR HOST"); // Authentication ApiKeyAuth Legacy API Key = (ApiKeyAuth) defaultClient.getAuthentication("Legacy API Key"); Legacy API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } ApiKeyAuth Trend Micro Cloud One API Key = (ApiKeyAuth) defaultClient.getAuthentication("Trend Micro Cloud One API Key"); Trend Micro Cloud One API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } // Initialization // Set Any Required Values PolicyIntrusionPreventionRuleDetailsApi instance = new PolicyIntrusionPreventionRuleDetailsApi(); Integer policyID = 1; Integer intrusionPreventionRuleID = 1; Boolean overrides = false; String apiVersion = "YOUR VERSION"; try { // Please replace the parameter values with yours IntrusionPreventionRule result = instance.describeIntrusionPreventionRuleOnPolicy(policyID, intrusionPreventionRuleID, overrides, apiVersion); System.out.println(result); } catch (ApiException e) { System.err.println("An exception occurred when calling PolicyIntrusionPreventionRuleDetailsApi.describeIntrusionPreventionRuleOnPolicy"); e.printStackTrace(); } } }
- 200
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
Modify an intrusion prevention rule
Modify an intrusion prevention rule assigned to a policy. Any unset elements will be left unchanged.
PolicyIntrusionPreventionRuleDetailsApi.modifyIntrusionPreventionRuleOnPolicy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.modify_intrusion_prevention_rule_on_policy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.modifyIntrusionPreventionRuleOnPolicy([param1, param2, ...])
path Parameters
header Parameters
Request Body schema: application/json
The settings of the intrusion prevention rule to modify.
successful operation
Not authorized to modify the policy or the requested modification is not permitted.
The policy or intrusion prevention rule does not exist.
- Payload
- Java
- Python
- JavaScript
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "dependsOnRuleIDs": [
- 0
], - "CVSSScore": "string",
- "CVE": [
- "string"
]
}
- 200
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}
Reset intrusion prevention rule overrides
Remove all overrides for an intrusion prevention rule from a policy.
PolicyIntrusionPreventionRuleDetailsApi.resetIntrusionPreventionRuleOnPolicy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.reset_intrusion_prevention_rule_on_policy([param1, param2, ...])
PolicyIntrusionPreventionRuleDetailsApi.resetIntrusionPreventionRuleOnPolicy([param1, param2, ...])
path Parameters
successful operation
Not authorized to modify the policy.
The policy does not exist.
- Java
- Python
- JavaScript
import com.trendmicro.deepsecurity.ApiClient; import com.trendmicro.deepsecurity.Configuration; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.auth.ApiKeyAuth; import com.trendmicro.deepsecurity.ApiException; import com.trendmicro.deepsecurity.api.PolicyIntrusionPreventionRuleDetailsApi; import com.trendmicro.deepsecurity.model.IntrusionPreventionRule; public class ResetIntrusionPreventionRuleOnPolicyExample { public static void main(String[] args) { // Setup ApiClient defaultClient = Configuration.getDefaultApiClient(); defaultClient.setBasePath("YOUR HOST"); // Authentication ApiKeyAuth Legacy API Key = (ApiKeyAuth) defaultClient.getAuthentication("Legacy API Key"); Legacy API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } ApiKeyAuth Trend Micro Cloud One API Key = (ApiKeyAuth) defaultClient.getAuthentication("Trend Micro Cloud One API Key"); Trend Micro Cloud One API Key.setApiKey("YOUR API KEY"); try { defaultClient.trustAllCertificates(false); } catch (Exception e) { System.err.println("An exception occurred when calling ApiClient.trustAllCertificates"); e.printStackTrace(); } // Initialization // Set Any Required Values PolicyIntrusionPreventionRuleDetailsApi instance = new PolicyIntrusionPreventionRuleDetailsApi(); Integer policyID = 1; Integer intrusionPreventionRuleID = 1; Boolean overrides = false; String apiVersion = "YOUR VERSION"; try { // Please replace the parameter values with yours IntrusionPreventionRule result = instance.resetIntrusionPreventionRuleOnPolicy(policyID, intrusionPreventionRuleID, overrides, apiVersion); System.out.println(result); } catch (ApiException e) { System.err.println("An exception occurred when calling PolicyIntrusionPreventionRuleDetailsApi.resetIntrusionPreventionRuleOnPolicy"); e.printStackTrace(); } } }
- 200
{- "name": "string",
- "description": "string",
- "minimumAgentVersion": "string",
- "applicationTypeID": 0,
- "priority": "lowest",
- "ruleAvailability": "endpoint-and-workload",
- "severity": "low",
- "detectOnly": true,
- "eventLoggingDisabled": true,
- "generateEventOnPacketDrop": true,
- "alwaysIncludePacketData": true,
- "debugModeEnabled": true,
- "type": "custom",
- "originalIssue": 0,
- "lastUpdated": 0,
- "identifier": "string",
- "template": "signature",
- "signature": "string",
- "start": "string",
- "patterns": [
- "string"
], - "end": "string",
- "caseSensitive": true,
- "condition": "all",
- "action": "drop",
- "customXML": "string",
- "alertEnabled": true,
- "scheduleID": 0,
- "contextID": 0,
- "recommendationsMode": "enabled",
- "canBeAssignedAlone": true,
- "dependsOnRuleIDs": [
- 0
], - "ID": 0,
- "CVSSScore": "string",
- "CVE": [
- "string"
]
}