I'm currently setting up a server for a customer and they require the Stingray traffic managers application firewall to be active as an additional layer of protection.
They're however wanting to allow any FTP traffic between the sizes of 500mb to 600mb straight through to the server and avoid the Application Firewall completely as to not be an additional drain on resources.
I've managed to find that the 'RequestWhitelist' parameter can be used within these rules by looking through the user manual (Page 55 if anyone's interested), however I'm having issues implementing this as I'm not too sure what type of syntax to use for this rule.
Also, forgive me if this is a basic question, however I didn't think it was possible to set a rule dependant on size, due to the fact that each packet will be only a few KB in size. However I can see that there is 'enforcer_max_body_size' within the WAF that will deny any requests with a body larger than X amount, however not sure where this would be picked up from and how I could use this within my rule.
Has anyone else had to configure anything like this within Stingray?