Help Center> Web Application Firewall> FAQs> Protection Rule Configuration> Others> What Working Modes and Protection Mechanisms Does WAF Have?
Updated on 2023-11-30 GMT+08:00

What Working Modes and Protection Mechanisms Does WAF Have?

After you connect a domain name to your WAF instance, WAF works as a reverse proxy between the client and server. The real IP address of the server is hidden and only the IP address of WAF is visible to web visitors.

WAF supports the following working modes:
  • Enabled
  • Suspended
  • Bypassed
    • If a proxy is used for the website that is deployed in Cloud mode before it is connected to WAF, the WAF instance cannot be switched to the Bypassed mode.
    • The Bypassed mode is unavailable for websites deployed in Dedicated mode.

For more details, see Switching WAF Working Mode.

Table 1 describes the protection mechanism.

Table 1 Supported protection mechanism

Protection Rule

Protective Action

Basic Web Protection Rules

  • Block
  • Log only

CC Attack Protection Rules

  • Verification code
  • Block
  • Block dynamically
  • Log only

Precise Protection Rules

  • Block
  • Allow
  • Log only

Blacklist and Whitelist Rules

  • Block
  • Allow
  • Log only

Geolocation Access Control Rules

  • Block
  • Allow
  • Log only
NOTICE:

This type of rule is supported in professional, platinum, dedicated, and ELB-mode WAF instances.

Enabling Anti-Crawler Protection

Protective actions for feature-based anti-crawler rules:

  • Block
  • Log only
NOTICE:

This type of rule is supported in professional, platinum, dedicated, and ELB-mode WAF instances.

  • Block: WAF blocks and logs detected attacks.
  • Log only: WAF only logs detected attacks.

Others FAQs

more