rule name (user-defined application view)

Function

The rule name command creates a user-defined application rule.

The undo rule command deletes a user-defined application rule.

Format

rule name name

undo rule { name name | all }

Parameters

Parameter	Description	Value
name name	Specifies the name of a rule.	The value is a case-sensitive character string. The value is a case-sensitive string of 1 to 32 characters. Enclose the name with double quotation marks ("") if the name contains spaces, for example, "user for test". The name that contains spaces has 3 to 34 characters. The name cannot contain question marks (?), commas (,), or hyphens (-). If the name does not contain any space, it also cannot have any double quotation marks ("). In addition, the name cannot be any or all.
all	Deletes all user-defined application rules.	-

Views

User-defined application view

Default Level

2: Configuration level

Usage Guidelines

If the specified user-defined application rule does not exist, a new application rule is created and the application rule view is displayed. If the specified user-defined application rule exists, the view of the specified user-defined application rule is displayed.

The AntiDDoS uses the 3-tuple, keyword, or the combination to creates rules. The 3-tuple can be the destination 3-tuple (server address, protocol, and port) or source 3-tuple (user source address, protocol, and source port). The keyword indicates the signature of the application data packets or data flow. The signature uniquely identifies the application.

You can run the ip-address (user-defined application rule view)/ipv6-address (user-defined application rule view), port (user-defined application rule view), and protocol (user-defined application rule view) commands to specify the 3-tuple of an application. After you configure the 3-tuple and commit the configuration, the AntiDDoS uses the destination 3-tuple to match the first packet of a flow. If a match is found, the application of the traffic is the application specified in the 3-tuple. If no match is found, the AntiDDoS uses the source 3-tuple to match the first packet. If a match is found, the application of the traffic is the application specified in the 3-tuple. If no match is found, the application of the traffic is not the application specified in the 3-tuple.

If you use the 3-tuple to configure user-defined application rules, ensure that one rule contains at least one IP address or port.
You can run the signature (user-defined application rule view) command to specify the keyword of an application.

You can configure multiple rules for one user-defined application. These rules are logically ORed. Data flows or packets are of the application once they match one of the rules.

When the number of user-defined application rules on the AntiDDoS exceeds the maximum value but the number of user-defined applications does not exceed the maximum value, you can create user-defined applications but cannot create user-defined application rules.

Example

# Create rule rule1 for user-defined application UD_abc and access the rule view.

<sysname> system-view
[sysname] sa
[sysname-sa] user-defined-application name UD_abc
[sysname-sa-user-defined-app-UD_abc] rule name rule1
[sysname-sa-user-defined-app-UD_abc-rule-rule1]