Skip to content

Commit a70ef88

Browse files
maxvpdaisyfaithauma
maxvp
authored and
daisyfaithauma
committed
Initial commit (#21994)
1 parent 6c76154 commit a70ef88

File tree

1 file changed

+8
-6
lines changed
  • src/content/docs/cloudflare-one/policies/gateway/network-policies

1 file changed

+8
-6
lines changed

src/content/docs/cloudflare-one/policies/gateway/network-policies/index.mdx

Lines changed: 8 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@ sidebar:
55
order: 3
66
---
77

8-
import { Details, InlineBadge, Render } from "~/components";
8+
import { Details, InlineBadge, Render, Badge } from "~/components";
99

1010
:::note
1111
To enable this feature, download and deploy the [WARP client](/cloudflare-one/connections/connect-devices/warp/deployment/) on your devices.
@@ -83,7 +83,7 @@ Policies with Allow actions allow network traffic to reach certain IPs or ports.
8383
| Destination IP | in | `92.100.02.102` | And | Allow |
8484
| Email | in | `*@example.com` | | |
8585

86-
### Audit SSH
86+
### Audit SSH <Badge text="Deprecated" variant="caution"/>
8787

8888
API value: `audit_ssh`
8989

@@ -117,17 +117,19 @@ API value: `audit_ssh`
117117

118118
</Details>
119119

120+
:::caution
121+
Gateway no longer supports the Audit SSH action for new policies. To log your SSH traffic, Cloudflare recommends deploying [Access for Infrastructure](/cloudflare-one/connections/connect-networks/use-cases/ssh/ssh-infrastructure-access/) for your SSH server and configuring [SSH command logs](/cloudflare-one/connections/connect-networks/use-cases/ssh/ssh-infrastructure-access/#ssh-command-logs).
122+
:::
123+
120124
Policies with Audit SSH actions allow administrators to log SSH traffic. Gateway will detect SSH traffic over port `22`. For example, the following configuration logs SSH commands sent to a given IP address:
121125

122126
| Selector | Operator | Value | Action |
123127
| -------------- | -------- | -------------- | --------- |
124128
| Destination IP | in | `203.0.113.83` | Audit SSH |
125129

126-
For more information on SSH logging, refer to [Configure SSH proxy and command logs](/cloudflare-one/policies/gateway/network-policies/ssh-logging/).
127-
128-
:::note
129130
Gateway only audits SSH traffic over port `22`. Non-standard ports, including those specified with the [Destination Port selector](#destination-port), are not supported.
130-
:::
131+
132+
For more information on SSH logging, refer to [Configure SSH proxy and command logs](/cloudflare-one/policies/gateway/network-policies/ssh-logging/).
131133

132134
### Block
133135

0 commit comments

Comments
 (0)