TsgcWebSocketFirewall.BanEscalation
Click here to see this page in full context

TsgcWebSocketFirewallProperties › BanEscalation

BanEscalation Property

Progressive ban duration that grows per repeated offence by stepping through the Levels list.

Syntax

property BanEscalation: TsgcFirewallBanEscalation read FBanEscalation write SetBanEscalation;

Default Value

Remarks

Enable BanEscalation.Enabled and fill Levels with durations (in seconds, as strings). Each time the same IP is re-banned, the firewall moves to the next entry in the list so repeat offenders receive progressively longer bans. A level value of '0' means permanent ban. The offence counter resets after ResetAfterSec seconds of clean activity. When enabled, escalation overrides the fixed BruteForce.BanDurationSec and the default ban duration used by ThreatScore auto-ban. Default: ResetAfterSec=86400 (24 h).

Example


sgcWebSocketFirewall1.BanEscalation.Enabled := True;
// 5 min, 30 min, 2 h, 24 h, permanent
sgcWebSocketFirewall1.BanEscalation.Levels.Add('300');
sgcWebSocketFirewall1.BanEscalation.Levels.Add('1800');
sgcWebSocketFirewall1.BanEscalation.Levels.Add('7200');
sgcWebSocketFirewall1.BanEscalation.Levels.Add('86400');
sgcWebSocketFirewall1.BanEscalation.Levels.Add('0');
sgcWebSocketFirewall1.BanEscalation.ResetAfterSec := 86400;

Back to Properties