Help Center/ Web Application Firewall/ FAQs/ About WAF/ Will Traffic Be Permitted After WAF Is Switched to the Bypassed Mode?
Updated on 2025-11-10 GMT+08:00
View PDF

Will Traffic Be Permitted After WAF Is Switched to the Bypassed Mode?

For cloud WAF instances, if you switch the instance protection mode to Bypassed, requests are directly sent to the original backend server without passing through WAF.

The Bypassed mode can be enabled only when one of the following conditions is met:
  • Website services need to be restored to the status when the website is not connected to WAF.
  • You need to investigate website errors, such as 502, 504, or other incompatibility issues.
  • No proxy is configured between the client and WAF.

Effective Time of WAF Bypassed Working Mode

After you switch the protection mode to Bypassed, it takes 3 to 5 minutes for the switch to work.

Procedure for WAF Working Mechanism Switchover

  1. Log in to the WAF console.
  2. Click in the upper left corner and select a region or project.
  3. (Optional) If you have enabled the enterprise project function, in the upper part of the navigation pane on the left, select your enterprise project from the Filter by enterprise project drop-down list. Then, WAF will display the related security data in the enterprise project on the page.
  4. In the navigation pane on the left, click Website Settings.
  5. In the row containing the target domain name, click Bypassed in the Operation column. In the dialog box displayed, click Confirm.

    After you select Bypassed, the Status of the domain name is Bypassed.

Parent topic: About WAF