Block Access from Browsers to API in Pods

Overview

For TOS Aurora R22-1 and later, Tufin blocks API access commands from browsers to SecureTrack and SecureChange pods. These commands include the path /api/internal/trace/.

For example, commands like the following are not supported.

curl -d TRACE http://127.0.0.1/securetrack/api/internal/trace/categories/com.tufin

Change log levels

If you need to change log levels, use the service controller (see service-controller | "how-to" modify logging level for core JAVA services). Changes to the log levels could take a few minutes.

Note: The trace-conf utility is not supported in TOS Aurora R22-1 and later.