Import and merge signature rules

You can use the signature editor to import and merge rules through the Citrix ADC GUI. You can see all the new, updated, duplicate, and invalid rules.

The signature editor displays the following in four new rows:

  1. New Rules
  2. Updated Rules
  3. Duplicate Rules
  4. Invalid Rules

The output of New Rules Only and Updated Rules Only filters appears in the Category filter pane of the Edit window in signature editor.

You must import files through the GUI to see the corresponding links for new, duplicate, invalid, and updated rules.

For example, you can use the Citrix ADC GUI to import the following signature files:

<http://1.1.1.1/testsite/signatures/sig-3100000.xml>.

To import signature rules:

  1. In the NetScaler web GUI, go to Configuration > Security > Application Firewall > Signatures. In the Signatures window, click Add. Then select File Format > Native,  Import From > URL and in the URL field, add the above link. For example; <http://1.1.1.1/testsite/signatures/sig-3100000.xml>.

  2. After you click Open, the signature file will open and you can see links for New Rule and Invalid Rules.

  3.  If you import a 3<sup>rd</sup> party signature rule from the following site, for example;  <http://1.1.1.1/FFC/sig_validation/trendmicro_sample2.xml> as shown below, you can see 90 new Rules and nine duplicate Rules in the imported .xml file.

Import and merge signature rules