Citrix ADC Application Firewall (AppFW) Counters
Article ID: CTX131792
Updated On:
Description
This article contains information about the newnslog Application Firewall (AppFW) counters and a brief description of the counters.
Using the Counters
Log on to the ADC using an SSH client, change to SHELL, navigate to the /var/nslog directory, and then use the ‘nsconmsg’ command to see comprehensive statistics using the different counters available. For the detailed procedure refer to Citrix Blog - NetScaler ‘Counters’ Grab-Bag!.ADC Application Firewall (AppFW) Counters
The following table lists the different newnslog AppFW counters and a brief description of the counter:
|
Newnslog Counter |
Description |
|
as_Requests |
HTTP/HTTPS requests sent to the protected web servers through the Application Firewall |
|
as_Responses |
HTTP/HTTPS responses sent by the protected web servers through the Application Firewall. |
|
as_abort |
Incomplete HTTP/HTTPS requests aborted by the client before the Application Firewall could finish processing them. |
|
as_redirect |
HTTP/HTTPS requests redirected by the Application Firewall to a different Web page or web server. (HTTP 302) |
|
as_viol_starturl |
Number of Start URL security check violations detected by the Application Firewall |
|
as_viol_denyurl |
Number of Deny URL security check violations detected by the Application Firewall |
|
as_viol_referer_header |
Number of Referrer Header security check violations detected by the Application Firewall |
|
as_viol_bufferoverflow |
Number of Buffer Overflow security check violations detected by the Application Firewall |
|
as_viol_cookie |
Number of Cookie Consistency security check violations detected by the Application Firewall |
|
as_viol_csrf_tag |
Number of Cross Site Request Forgery form tag security check violations detected by the Application Firewall |
|
as_viol_xss |
Number of HTML Cross-Site Scripting security check violations detected by the Application Firewall |
|
as_viol_sql |
Number of HTML SQL Injection security check violations detected by the Application Firewall |
|
as_viol_fldfmt |
Number of Field Format security check violations detected by the Application Firewall |
|
as_viol_fldconsistency |
Number of Field Consistency security check violations detected by the Application Firewall |
|
as_viol_safecommerce |
Number of Credit Card security check violations detected by the Application Firewall |
|
as_viol_safeobject |
Number of Safe Object security check violations detected by the Application Firewall. |
|
as_viol_total |
Total number of security check violations detected by the Application Firewall |
|
as_xml_wfc_violations |
Number of XML Format security check violations detected by the Application Firewall |
|
as_xml_xdos_violations |
Number of XML Denial-of-Service security check violations detected by the Application Firewall |
|
as_xml_msgval_violations |
Number of XML Message Validation security check violations detected by the Application Firewall |
|
as_xml_ws_i_violations |
Number of Web Services Interoperability (WS-I) security check violations detected by the Application Firewall |
|
as_xml_xml_sql_violations |
Number of XML SQL Injection security check violations detected by the Application Firewall |
|
as_xml_xml_xss_violations |
Number of XML Cross-Site Scripting (XSS) security check violations detected by the Application Firewall |
|
as_xml_xml_attachment_violations |
Number of XML Attachment security check violations detected by the Application Firewall |
|
as_xml_soap_fault_violations |
Number of requests returning soap:fault from the backend server |
|
as_xml_generic_violations |
Number of requests returning XML generic error from the backend server |
|
as_viol_signature |
Number of Signature violations detected by the Application Firewall |
|
as_ret_4xx |
Number of requests returning HTTP 4xx from the backend server |
|
as_ret_5xx |
Number of requests returning HTTP 5xx from the backend server |
|
as_req_bytes |
Number of bytes transferred for requests |
|
as_res_bytes |
Number of bytes transferred for responses |
|
as_long_avg_res_time |
Average backend response time in milliseconds since reboot |
|
as_short_avg_res_time |
Average backend response time in milliseconds over the last 7 seconds |
|
as_traps_dropped |
AppFirewall SNMP traps dropped due to time limit |
|
as_Requests_profile |
HTTP/HTTPS requests sent to the protected web servers through the Application Firewall |
|
as_Responses_profile |
HTTP/HTTPS responses sent by the protected web servers through the Application Firewall |
|
as_abort_profile |
Incomplete HTTP/HTTPS requests aborted by the client before the Application Firewall could complete processing them |
|
as_redirect_profile |
HTTP/HTTPS requests redirected by the Application Firewall to a different Web page or web server (HTTP 302) |
|
as_viol_starturl_profile |
Number of Start URL security check violations detected by the Application Firewall |
|
as_viol_denyurl_profile |
Number of Deny URL security check violations detected by the Application Firewall. |
|
as_viol_referer_header_profile |
Number of Referer Header security check violations detected by the Application Firewall. |
|
as_viol_bufferoverflow_profile |
Number of Buffer Overflow security check violations detected by the Application Firewall. |
|
as_viol_cookie_profile |
Number of Cookie Consistency security check violations detected by the Application Firewall. |
|
as_viol_csrf_tag_profile |
Number of Cross Site Request Forgery form tag security check violations detected by the Application Firewall. |
|
as_viol_xss_profile |
Number of HTML Cross-Site Scripting security check violations detected by the Application Firewall. |
|
as_viol_sql_profile |
Number of HTML SQL Injection security check violations detected by the Application Firewall. |
|
as_viol_fldfmt_profile |
Number of Field Format security check violations detected by the Application Firewall. |
|
as_viol_fldconsistency_profile |
Number of Field Consistency security check violations detected by the Application Firewall. |
|
as_viol_safecommerce_profile |
Number of Credit Card security check violations detected by the Application Firewall. |
|
as_viol_safeobject_profile |
Number of Safe Object security check violations detected by the Application Firewall. |
|
as_xml_wfc_violations_profile |
Number of XML Format security check violations detected by the Application Firewall. |
|
as_xml_xdos_violations_profile |
Number of XML Denial-of-Service security check violations detected by the Application Firewall. |
|
as_xml_msgval_violations_profile |
Number of XML Message Validation security check violations detected by the Application Firewall. |
|
as_xml_ws_i_violations_profile |
Number of Web Services Interoperability (WS-I) security check violations detected by the Application Firewall. |
|
as_xml_xml_sql_violations_profile |
Number of XML SQL Injection security check violations detected by the Application Firewall. |
|
as_xml_xml_xss_violations_profile |
Number of XML Cross-Site Scripting (XSS) security check violations detected by the Application Firewall. |
|
as_xml_xml_attachment_violations_profile |
Number of XML Attachment security check violations detected by the Application Firewall. |
|
as_xml_soap_fault_violations_profile |
Number of requests returning soap:fault from the backend server |
|
as_xml_generic_violations_profile |
Number of requests returning XML generic violation from the backend server |
|
as_viol_signature_profile |
Number of Signature violations detected by the Application Firewall. |
|
as_ret_4xx_profile |
Number of requests returning HTTP 4xx from the backend server |
|
as_ret_5xx_profile |
Number of requests returning HTTP 5xx from the backend server |
|
as_req_bytes_profile |
Number of bytes transferred for requests |
|
as_res_bytes_profile |
Number of bytes transferred for responses |
|
as_long_avg_res_time_per_profile |
Average backend response time in milliseconds since reboot |
|
as_short_avg_res_time_per_profile |
Average backend response time in milliseconds over the last 7 seconds |
|
as_viol_total_per_profile |
Number of violations detected by the application firewall on per profile basis |
Issue/Introduction
