NetScaler Console service

All Violations

The All Violations page displays the application security violation details based on the Network, WAF, and Bot categories. To view the security violations in NetScaler Console, ensure that you enabled all the required settings. For more information, see the procedure available at Setting up.

Violation categories

NetScaler Console enables you to view the following violations. Under Violation Details, you can click each violation tab to view the violation details.

Network WAF Bot
HTTP Slow Loris Infer Content Type XML Scraper
DNS Slow Loris Buffer Overflow Screenshot Creator
HTTP Slow Post Content Type Search Engine
NXDomain Flood Attack Cookie Consistency Service Agent
HTTP desync attack CSRF Form Tagging Site Monitor
Bleichenbacher Attack Deny URL Speed Tester
Segment smack Attack Form Field Consistency Tool
SYN Flood Attack Field Formats Uncategorized
Small Window Attack Referrer Header Virus Scanner
Cross-site scripting
XML DoS
XML Format
XML WSI
XML SSL
XML Attachment
XML SOAP Fault
XML Validation
Others
IP Reputation
HTTP DOS
TCP Small Window
Signature Violation
File Upload Type
JSON cross-site scripting
JSON SQL
JSON DOS
Command Injection
  Cookie Hijack Feed Fetcher
  Block Keyword Link Checker
  JSON Block Keyword Marketing
Safe Commerce
Safe Object
HTML SQL Inject
Start URL
  Command Injection Grammar  
  JSON SQL Injection Grammar  

Security violations dashboard

In the security violations dashboard, you can view:

  • Total violations occurred across all NetScaler instances and applications. The total violations are displayed based on the selected time duration.

    Total violations

  • Total violations under each category.

    Total violations

  • Total NetScaler instances affected, total applications affected, and top violations based on the total occurrences and the affected applications.

    Affected violations

Violation details

For each violation, NetScaler Console monitors the behavior for a specific time duration and detects violations for unusual behaviors. Click each tab to view the violation details. You can view details such as:

  • The total occurrences, last occurred, and total applications affected

  • Under event details, you can view:

    • The affected application. You can also select the application from the list if two or more applications are affected with violations.

    • The graph indicating violations.

    • Recommended Actions that suggest you troubleshoot the issue.

    • Other violation details such as violence occurrence time and detection message.

All Violations