GuideReference
Guide

Eval penalty box

akamai_appsec_eval_penalty_box

Suggest Edits

Modifies the penalty box settings for a security policy in evaluation mode - evaluation penalty box.

When the penalty box is enabled for a policy in evaluation mode, clients that trigger a WAF Deny action are placed in the penalty box.

There, the action you select for the penalty box (either Alert or Deny) continues to apply to any requests from that client for the next 10 minutes.

resource "akamai_appsec_eval_penalty_box" "eval_penalty_box" {
  config_id              = 12345
  security_policy_id     = "abcd_1234567"
  penalty_box_protection = true
  penalty_box_action     = "deny"
}

Argument reference

This resource supports the following arguments:

  • config_id (Required). Unique identifier of the security configuration associated with the evaluation penalty box settings being modified.

  • security_policy_id (Required). Unique identifier of the security policy associated with the evaluation penalty box settings being modified.

  • penalty_box_protection (Required). Set to true to enable evaluation penalty box protection; set to false to disable evaluation penalty box protection.

  • penalty_box_action (Required). Action taken any time evaluation penalty box protection is triggered. Allowed values are:

    • alert. Record the event.
    • deny. Block the request.
    • denycustom{custom_deny_id}. Take the action specified by the custom deny.
    • none. Take no action.

Updated 9 days ago