Operation: Add SSL TLS inspection rule / Update SSL TLS inspection rule
Description: Add an SSL TLS inspection rule.Update an SSL TLS inspection rule. 

Sample Configuration
<SSLTLSInspectionRule> <Name>Name</Name> <NewName>Edited Name</NewName> <IsDefault>yes/no</IsDefault> <Description>Description</Description> <Enable>Yes/No</Enable> <!-- Position is optional in ADD operations. If it is not supplied the default Bottom is applied It is not required in UPDATE or APIImport --> <Position>Top/Bottom</Position> <LogConnections>Enable/Disable</LogConnections> <DecryptAction>Do not decrypt/Decrypt/Deny</DecryptAction> <DecryptionProfile>Decryption Profile</DecryptionProfile> <SourceZones> <Zone>Zone</Zone> : </SourceZones> <SourceNetworks> <Network>Source Network</Network> : </SourceNetworks> <DestinationZones> <Zone>Zone</Zone> : </DestinationZones> <DestinationNetworks> <Network>Destination Network</Network> : </DestinationNetworks> <Identity> <Members>Users/Groups</Members> : </Identity> <Services> <Service>Service</Service> : </Services> <Websites> <Activity> <Name>Name</Name> <Type>Web Category/URL Group</Type> </Activity> : </Websites> <!-- MoveTo is optional, for ADD it is applied after Position --> <MoveTo> <Name>Name of reference position</Name> <OrderBy>Before/After</OrderBy> </MoveTo> </SSLTLSInspectionRule>



Parameter Mandatory Default Description
DecryptActionNo  
Specify the action to use for traffic matching the rule.
DecryptAction confines to:
  • Type is 'SCALAR'.
  • Only 'Decrypt', 'Do not decrypt', 'Deny' are allowed.
DescriptionNo  
Specify rule description.
Description confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Maximum characters allowed are 255.
OrderByNo  
Specifies whether to move above or below.
OrderBy confines to:
  • Type is 'SCALAR'.
  • Only 'Before', 'After' are allowed.
ServiceNo  
Specify the service(s) to which rule is to be applied.
Service confines to:
  • Type is 'ARRAY'.
  • Datatype is 'STRING'.
  • Multiple values are allowed.
IsDefaultNo no 
Read-only field specifying if it's a default SSL/TLS inspection rule.
NetworkNo  
Specify the destination network(s) to which rule is to be applied.
Network confines to:
  • Type is 'ARRAY'.
  • Datatype is 'STRING'.
  • Multiple values are allowed.
ZoneNo  
Specify the destination zone(s) to which rule is to be applied.
LogConnectionsNo  
Specify 'Enable' to log connections to the SSL log.
LogConnections confines to:
  • Type is 'SCALAR'.
  • Only 'Enable', 'Disable', 't', 'f' are allowed.
DecryptionProfileNo  
Specify the name of the associated decryption profile.
EnableNo  
Specify whether rule is enabled.
Enable confines to:
  • Type is 'SCALAR'.
  • Only 'Yes', 'No', 't', 'f' are allowed.
MembersNo  
Specify the source users/groups to which rule is to be applied.
NameYes  
Specify rule name.
Name confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Character not allowed: Comma (,)
  • Maximum characters allowed are 60.
  • UTF-8 character(s) are allowed.
PositionNo  
Specify 'Top' to have this rule placed at the top of the list, and 'Bottom' to have it appear at the bottom.
Position confines to:
  • Type is 'SCALAR'.
  • Only 'Top', 'Bottom' are allowed.
WebsitesNo  
Specify the category/websites to which rule is to be applied.
Websites confines to:
  • Type is 'ARRAY'.
  • Datatype is 'OBJECT'.
  • webfilter::websites
  • Multiple values are allowed.
ZoneNo  
Specify the source zone(s) to which rule is to be applied.
NameNo  
Reference position for rule move
Name confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Character not allowed: Comma (,)
  • Maximum characters allowed are 60.
  • UTF-8 character(s) are allowed.
NetworkNo  
Specify the source network(s) to which rule is to be applied.
Network confines to:
  • Type is 'ARRAY'.
  • Datatype is 'STRING'.
  • Multiple values are allowed.



Operation   Status   Message
Add SSL TLS inspection rule200
Add SSL TLS inspection rule500
Add SSL TLS inspection rule502
Add SSL TLS inspection rule522
Update SSL TLS inspection rule200
Update SSL TLS inspection rule500

© Copyright Sophos Firewall Limited. All rights reserved.
Sophos Firewall is registered trademarks of Sophos Firewall Limited and Sophos Firewall Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.