Policy > Security > East West Security > Distributed IDS > Rules

create or update IDS rule

Update intrusion detection system rule. This API is available when using VMware Cloud (AWS, Dell-EMC, Outpost, Hyperscalers) or VMware NSX-T.

Request:

Method:
PUT
URI Path(s):
/policy/api/v1/infra/domains/<domain-id>/intrusion-service-policies/<policy-id>/rules/<rule-id>
Request Headers:
n/a
Query Parameters:
n/a
Request Body:
IdsRule+

Example Request:

PUT https://<policy-mgr>/policy/api/v1/infra/domains/default/intrusion-service-policies/sp1/rules/rule2 { "action": "DETECT", "ids_profiles": ["/infra/settings/firewall/security/intrusion-services/profiles/DefaultIDSProfile"], "disabled": true, "display_name": "Test-Rule", "logged": true, "direction": "OUT", "sequence_number": 100, "source_groups": ["/infra/domains/default/groups/Empty_Group"], "destination_groups": ["/infra/domains/default/groups/Empty_Group"], "scope": ["/infra/domains/default/groups/Empty_Group"] }

Successful Response:

Response Code:
200 OK
Response Headers:
Content-type: application/json
Response Body:
IdsRule+

Example Response:

{ "action": "DETECT", "ids_profiles": [ "/infra/settings/firewall/security/intrusion-services/profiles/DefaultIDSProfile" ], "resource_type": "IdsRule", "id": "rule2", "display_name": "Test-Rule2", "path": "/infra/domains/default/intrusion-service-policies/sp1/rules/rule2", "relative_path": "rule2", "parent_path": "/infra/domains/default/intrusion-service-policies/sp1", "unique_id": "0cafabf6-aa45-4b3d-a155-6fbd0ce2dbcd", "marked_for_delete": false, "sequence_number": 100, "sources_excluded": false, "destinations_excluded": false, "source_groups": [ "/infra/domains/default/groups/Empty_Group" ], "destination_groups": [ "/infra/domains/default/groups/Empty_Group" ], "logged": true, "scope": [ "/infra/domains/default/groups/Empty_Group" ], "disabled": true, "direction": "OUT", "_create_user": "admin", "_create_time": 1563266289276, "_last_modified_user": "admin", "_last_modified_time": 1563266289281, "_system_owned": false, "_protection": "NOT_PROTECTED", "_revision": 4 }

Required Permissions:

crud

Feature:

policy_dfw_ids_mps

Additional Errors: