Help Center/ Web Application Firewall/ User Guide (ME-Abu Dhabi Region) / FAQs/ Protection Rule Configuration/ Others/ What Working Modes and Protection Mechanisms Does WAF Have?
Updated on 2024-03-14 GMT+08:00

What Working Modes and Protection Mechanisms Does WAF Have?

After you connect a domain name to your WAF instance, WAF works as a reverse proxy between the client and server. The real IP address of the server is hidden and only the IP address of WAF is visible to web visitors.

WAF supports the following working modes:
  • Enabled
  • Suspended
  • Bypassed
    • If a proxy is used for the website that is deployed in Cloud mode before it is connected to WAF, the WAF instance cannot be switched to the Bypassed mode.
    • The Bypassed mode is unavailable for websites deployed in Dedicated mode.

Table 1 describes the protection mechanism.

Table 1 Supported protection mechanism

Protection Rule

Protective Action

Basic web protection rules

  • Block
  • Log only

CC attack protection rules

  • Verification code
  • Block
  • Block dynamically
  • Log only

Precise protection rules

  • Block
  • Allow
  • Log only

Blacklist and whitelist rules

  • Block
  • Allow
  • Log only

Geolocation access control rules

  • Block
  • Allow
  • Log only

Website anti-crawler protection

Protective actions for feature-based anti-crawler rules:

  • Block
  • Log only