How to check the limit of the App Firewall db size and how many learning rules can it reach? Is 2000 learning rules for each security check or for the whole App Firewall?

[Samanth Krishna Dhas]

Based on the global setting output. we are seeting limit as 400

> show appfw setting

    DefaultProfile: APPFW_BYPASS UndefAction: APPFW_BLOCK

    SessionTimeout: 180   LearnRateLimit: 400

    SessionLifetime: 0   SessionCookieName: citrix_ns_id

    ImportSizeLimit: 134217728 SignatureAutoUpdate: OFF

    SignatureUrl: "https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMa

    pping.xml" CookiePostEncryptPrefix: ENC GeoLocationLogging: OFF

    CEFLogging: ON     EntityDecoding: OFF

    UseConfigurableSecretKey: OFF SessionLimit: 100000

    MalformedReqAction: block log stats Learning: ON

    CentralizedLearning: OFF ProxyPort: 8080

    Feature: SYSTEM

[Akhil Nair]

Hi @Samanth Krishna Dhas​ - The 2000 rule limit is for each security check which has learning enabled.

You can find more information here - https://docs.netscaler.com/en-us/citrix-adc/current-release/application-firewall/profiles/learning.html.

What you're looking at is the is the learn msgs/second rate limit. Msgs over this limit will be dropped.