Help Center/ Web Application Firewall/ FAQs/ Protection Rules/ Why Cannot the Verification Code Be Refreshed When Verification Code Is Configured in a CC Attack Protection Rule?

Updated on 2024-10-31 GMT+08:00

View PDF

Why Cannot the Verification Code Be Refreshed When Verification Code Is Configured in a CC Attack Protection Rule?

Symptom

After you add a CC attack rule with Protective Action set to Verification code on WAF, the verification code cannot be refreshed and the verification fails when the website is requested. Figure 1 shows an example.

Figure 1 Verification failed
Click to enlarge

After Verification code is configured, a verification code is required when the number of requests exceeds the maximum limit within a specified period. Upon completing the verification, the access limit is lifted.

For details, see Configuring a CC Attack Protection Rule.

Possible Causes

When a domain name is connected to both WAF and Content Delivery Network (CDN), and the value for Path of the CC attack protection rule contains a static page, the static page is cached by CDN. As a result, the verification code cannot be refreshed and the verification fails.

Handling Suggestions

In CDN, configure cache policies to bypass the cache for static URLs.

After the configuration is complete, it takes 3 to 5 minutes for the configured cache policies to take effect.

Log in to the management console.
Click in the upper left corner of the management console and select a region or project.
Click in the upper left corner of the page and choose Content Delivery & Edge Computing > Content Delivery Network.
In the navigation pane, choose Domains.
In the Domain Name column, click the name of the target domain name.
Click the Cache Settings tab and click Edit.

In the displayed Configure Cache Policy dialog box, click Add below the policy list and add two cache policy rules by referring to Table 1.

Figure 2 Configure Cache Policy
Click to enlarge

**Table 1** Parameters for configuring static URL cache policy
Parameter	Configuration Description
Type	Select Full path.
Content	The content of the two policies to be added are as follows: /verifydwhzqcp-captcha /getdwhzqcp-captcha.jpg
Priority	Set the two policies to the highest priority.
Maximum Age	Set this parameter to 0 seconds, indicating that static URLs are not cached.

Click OK.

Figure 3 Configured cache policies

After the configuration is complete, it takes 3 to 5 minutes for the configured cache policies to take effect.

Parent topic: Protection Rules

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel