If normal access traffic is intercepted by the WAF rule engine in a production environment, you can whitelist the corresponding rule. Once whitelisted, the traffic will not be intercepted.
Adding Allowlist
Rule Engine
1. Log in to the WAF console, and at the top of the left sidebar, switch the console to the region where the instance resides (Chinese mainland / regions outside the Chinese mainland).
2. In the left sidebar, choose Protection Policy > Basic Security.
3. On the Basic Security page, select the target domain, and click Web security.
4. Click Add allowlist on the right of the attack type ruleset to navigate to the Add Allowlist page. On this page, configure relevant parameters and click OK.
Field description:
Rule name: Custom rule name, up to 50 characters.
Matching method: For detailed field descriptions, refer to Field matching description. Up to 5 rules can be added.
Allowed module: Supports whitelisting by rule type or specific rule ID. Click Allowlist on the right of the attack type ruleset to default to whitelisting by rule type and automatically select that attack type. Multiple selections are supported.
Enable allowlist: One-click enable/disable of this allowlist rule is supported.
5. In addition to the above methods, you can click View Details on the right of an attack type. On the ruleset information page, click Allowlist in the Operation column to add an allowlist rule.
6. The allowlist module defaults to whitelisting by specific rule ID and automatically adds this rule ID. Multiple rule IDs can be added, separated by Enter, up to 50.
How to obtain a rule ID is as follows:
Method 1:
a. On the Basic Security > WEB Security page, select the attack type ruleset to which the required rule ID belongs, and click View Details.
b. Select the required rule ID and click
.
Method 2: On the Attack Logs > Log collection > Raw logs page, click the desired rule_id and select Copy.
Blocklist/Allowlist
1. Log in to the WAF console, and at the top of the left sidebar, switch the console to the region where the instance resides (Chinese mainland / regions outside the Chinese mainland).
2. In the left sidebar, click Protection Policy > Blocklist.
3. On the Blocklist/Allowlist page, select the domain name to be protected in the upper left corner and click Preset rule exceptions.
4. On the Preset rule exceptions page, click Add rule, and an Add to allowlist pop-up window will appear.
5. In the Add Rule pop-up window, configure related parameters and click OK.
6. Once the allowlist is added, you can view the allowlist rules on the rule allowlist page and perform related operations. You can enable or disable allowlist rules in the rule switch column, edit or delete them in the operation column, and support batch deletion of rules.
