Policy Priority
DeepFinder's security policies are processed sequentially according to the priorities (Steps 1 to 12) defined below.
If a request is Blocked (Deny) or Allowed (Allow) by a policy, subsequent policy checks may be skipped, and processing may terminate.
| Priority | Major Category | Sub-Category (Detailed Processing Order) |
|---|---|---|
| 1 | IP Control | • DOMAIN POLICY > DOMAIN IP • DOMAIN POLICY > METHOD • URL POLICY > IP ACCESS |
| 2 | Denial of Service | • DOMAIN POLICY > DOS • DOMAIN POLICY > DDOS |
| 3 | URL Length Limit | • DOMAIN POLICY > DEFAULT LIMIT > Max Request Line Length • DOMAIN POLICY > DEFAULT LIMIT > Max URL Length • DOMAIN POLICY > DEFAULT LIMIT > Max Query Length |
| 4 | URI Inspection | • DOMAIN POLICY > DOMAIN DEFAULT SECURITY > Abnormal Image Request • DOMAIN POLICY > URL RESTRICTION |
| 5 | Cookie Control | • DOMAIN POLICY > DEFAULT LIMIT > Max Cookie Count • DOMAIN POLICY > DEFAULT LIMIT > Max Cookie Name Length • DOMAIN POLICY > DEFAULT LIMIT > Max Cookie Value Length • DOMAIN POLICY > COOKIE SECURITY |
| 6 | Header Inspection | • DOMAIN POLICY > HEADER FIELD NAME • DOMAIN POLICY > HEADER FIELD VALUE |
| 7 | GET Parameter (Query String) |
• URL POLICY > URL BASIC LIMIT > Max Parameter Count • DOMAIN POLICY > DEFAULT LIMIT > Max Parameter Name Length • URL POLICY > BRUTE FORCE ATTACK • URL POLICY > URL BASIC LIMIT > Min/Max Parameter Value Length • URL POLICY > SECURITY PATTERN |
| 8 | Request Body Length | • URL POLICY > URL BASIC LIMIT > Max Request Body Length |
| 9 | POST Attack | • URL POLICY > POST ATTACK (Slowloris/RUDY, etc.) |
| 10 | POST Body (Data Inspection) |
[Form Data (URL Encoded)] • URL POLICY > URL BASIC LIMIT > Max Parameter Count • DOMAIN POLICY > DEFAULT LIMIT > Max Parameter Name Length • URL POLICY > BRUTE FORCE ATTACK • URL POLICY > SECURITY PATTERN [Multipart Data (File Upload)] • URL POLICY > URL BASIC LIMIT > Max Parameter Count • DOMAIN POLICY > DEFAULT LIMIT > Max Parameter Name Length • URL POLICY > UPLOAD (Extension) • URL POLICY > URL BASIC LIMIT > Max Upload File Size • URL POLICY > URL BASIC LIMIT > Max Upload Size • URL POLICY > URL BASIC LIMIT > Max File Uploads • DOMAIN POLICY > DOMAIN DEFAULT SECURITY > File Extension Forgery • URL POLICY > SECURITY PATTERN |
| 11 | Response | • URL POLICY > URL BASIC LIMIT > Max Response Body Length • DOMAIN POLICY > DOMAIN DEFAULT SECURITY > Directory Listing • URL POLICY > DEEP FILE INSPECTION > Integrity Check • URL POLICY > DEEP FILE INSPECTION > New File Check • DOMAIN POLICY > HEADER FIELD VALUE > Header Value Modification |
| 12 | Information Leakage | • URL POLICY > DATA LEAKAGE PREVENTION |