Blacklist and Whitelist

In the following example, we demonstrate creating a blacklist and whitelist for the esets_http configured as an HTTP proxy scanner. Note that the configuration described in the previous section is used for this purpose.

To create a blacklist used by esets_http, create the following group section within the special configuration file ‘esets_http_spec.cfg’, introduced in the previous section. See below:

[black-list]
action_av = "reject"

Next, add the HTTP server to the ‘black-list’ group. To do this, the following special section must be created:

[aaa.bbb.ccc.ddd]
parent_id = "black-list"

In the example above, ‘aaa.bbb.ccc.ddd’ is the IP address of the server added to the ‘black-list’. All HTTP traffic related to the specified server will now be rejected, i.e. the server will be blocked.

To create the ‘white-list’ used by esets_http, it is necessary to create the following group section within the special configuration file ‘esets_http_spec.cfg’ which was introduced in the previous section. See below:

[white-list]
action_av = "accept"

Adding HTTP servers to the list is self-explanatory.