Login
      Contents x
      getWAFList
        • Print
        • PDF
        Contents

        getWAFList

          • Print
          • PDF
          Article Summary

          Overview

          • The getWAFList API is a feature provided by the "WAF" of "Security Monitoring" that allows you to check the list of security events detected by the WAF.
          • The API request must be IAM-authenticated via API Gateway.

          Request

          PlatformMethodRequest URI
          ClassicPOSThttps://securitymonitoring.apigw.ntruss.com/securitymonitoring/v1/getWAFList
          VPCPOSThttps://securitymonitoring.apigw.ntruss.com/vsecuritymonitoring/v1/getWAFList

          Request Header

          HeaderDescription
          x-ncp-apigw-timestampIt is the number of milliseconds that have elapsed since January 1, 1970 00:00:00 UTC.
          If the time difference with the API Gateway server is more than 5 minutes, the request is considered invalid.
          x-ncp-iam-access-keyAPI key issued by NAVER Cloud Platform or access key issued by IAM
          x-ncp-apigw-signature-v2Signature used to encrypt the body with the “secret key” that maps with the “access key.”
          The HMAC encryption algorithm is HMAC SHA256.

          Reference Call APIs that require IAM authentication

          Request parameters

          ParameterRequiredTypeDescription
          startDateTimeYeslongEvent search start time
          endDateTimeYeslongEvent search end time
          pageYesintPage Number
          countPerPageYesintNumber of displayed items per page
          orderNostringSort by Event detection time(asc, desc)
          default value : desc
          regionCodeNostringRegion code
          (Korea:KR, Germany:DEN, Japan:JPN, Singapore:SGN, USW:USWN)
          zoneNameNostringZone(KR-1, KR-2)
          eventNmNostringEvent name
          attackTypeNostringAttack Type
          attackIpNostringAttacker IP
          targetIpNostringTarget IP

          Response

          Response body

          FieldTypeDescription
          returnCodestringResponse code
          returnMessagestringResponse message
          totalRowsintThis is the total number of getWAFList.
          pageintThis is the requested page number.
          wafDataList[]arrayWAF Event List
          wafDataList[].ticketIdstringWAF Event Number
          wafDataList[].datestringEvent detection time
          wafDataList[].productstringProduct sortation (classic : WAF, vpc : WAF_V2)
          wafDataList[].eventNmstringEvent name
          wafDataList[].attackerIpstringAttacker IP
          wafDataList[].attackerPortstringAttacker Port
          wafDataList[].targetIpstringTarget IP
          wafDataList[].targetPortstringTarget Port
          wafDataList[].attackTypestringAttack Type
          wafDataList[].regionstringRegion
          wafDataList[].zoneNamestringZone(KR-1, KR-2)
          wafDataList[].platFormstringPlatform(CLASSIC, VPC)
          wafDataList[].vpcNamestringVPC name
          Use only in VPC

          Examples

          Request example(Classic)

          curl -X POST "https://securitymonitoring.apigw.ntruss.com/securitymonitoring/v1/getWAFList"
   -H "accept: application/json"
   -H "x-ncp-apigw-api-key: {x-ncp-apigw-api-key}"
   -H "x-ncp-iam-access-key: {x-ncp-iam-access-key}"
   -H "x-ncp-apigw-timestamp: {x-ncp-apigw-timestamp}"
   -H "x-ncp-apigw-signature-v2: {x-ncp-apigw-signature-v2}"
   -d {"startDateTime": {startDateTime},
         "endDateTime": {endDateTime},
         "page": {page},
         "countPerPage": {countPerPage}
   }

          Request example(VPC)

          curl -X POST "https://securitymonitoring.apigw.ntruss.com/vsecuritymonitoring/v1/getWAFList"
   -H "accept: application/json"
   -H "x-ncp-apigw-api-key: {x-ncp-apigw-api-key}"
   -H "x-ncp-iam-access-key: {x-ncp-iam-access-key}"
   -H "x-ncp-apigw-timestamp: {x-ncp-apigw-timestamp}"
   -H "x-ncp-apigw-signature-v2: {x-ncp-apigw-signature-v2}"
   -d {"startDateTime": {startDateTime},
         "endDateTime": {endDateTime},
         "page": {page},
         "countPerPage": {countPerPage}
    }

          Response example

          {
  "returnCode": "0",
  "returnMessage": "SUCCESS",
  "totalRows": 1,
  "page": 1,
  "wafDataList": [
    {
        "ticketId": "66376",
        "date": "1600203495000",
        "product": "WAF_V2",
        "eventNm": "WAF_TEST",
        "attackType": "HTTP 메소드 제한 탐지",
        "attackerIp": "10.33.7.6",
        "attackerPort": "4443",
        "targetIp": "10.10.10.1",
        "targetPort": "8080",
        "region": "Korea",
        "zoneName": "KR-1",
        "platForm": "VPC",
        "vpcName": "beta-vpc-test"
    }
  ]
}
          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout