How to control File Transit Policy from the command line
OverviewThe command line tool "VISULOX policy transit" allows to control the File Transit Policy. |
Usage
The following subcommands are available:
| Command | Description |
|---|---|
| list | List and print File Transit Policies. |
| add | Add a File Transit Policy. |
| edit | Modify fields of a File Transit Policy. |
| delete | Remove a File Transit Policy. |
| fields | List available database fields (-raw = enhanced output) |
File Transit Policy elements (edit)
| Element | Description |
|---|---|
| -name <> | Name of policy or use AUTO |
| -mode <> | Policy off, allow, approval, deny. Default value: allow. |
| -hash <> | Policy hash modes: off, on. Default value: <off> |
| -direction <> | Policy in, out, both. Default value: both |
| -size <> | Filesize in Kilobytes (k), Megabytes (M), Gigabytes (G). Default value:<50M> |
| -namepattern <> | Wildcard on filename <> |
| -pattern <> | Wildcard on file signature <> |
| -email <> | eMail for approval <> |
| -endpoint <> | Mask for endpoints <> |
| -object <> | Policy filter: mask or unique distinguished object of user or group <> |
| -recording <> | Recording on/off. Default value: <off> |
| -remoteip <> | Policy filter: remote IP or remote IP mask <> |
| -accesspoint <> | Policy filter: Access Point <> |
| -script <> | Trigger script <>. Usage: -script "<script-name>: args". Example with arguments: -script "Dump: -arg arg -arg1 <>" |
| -passon <> | Passon script <> |
| -comment <> | Comment for the policy. Default value: CLI. |
| -grant <> | Set granted user in database record <> |
Examples
List current available File Transit Policies
CODE
visulox policy transit list
----------------------------
| basicname | transitmode |
----------------------------
| POL-HASH | passedon.map |
| NOEXEC | deny.map |
| TRANSIT | allowed.map |List available fields
CODE
visulox policy transit fieldsList selected fields
CODE
visulox policy transit list -fields basicname,transitmode,ft_scriptAdd new File Transit Policy
CODE
visulox policy transit add -name TRANS1 -mode allow
Edit File Transit Policy
CODE
visulox policy transit edit -name TRANS1 -direction outRemove an entry
CODE
visulox policy transit delete -name TRANS1