Help Center/ Web Application Firewall/ User Guide (Paris) / FAQs/ Protection Rule Configuration/ Others/ What Working Modes and Protection Mechanisms Does WAF Have?
Updated on 2024-03-14 GMT+08:00

What Working Modes and Protection Mechanisms Does WAF Have?

After you connect a domain name to your WAF instance, WAF works as a reverse proxy between the client and server. The real IP address of the server is hidden and only the IP address of WAF is visible to web visitors.

WAF supports the following working modes:
  • Enabled
  • Suspended

Table 1 describes the protection mechanism.

Table 1 Supported protection mechanism

Protection Rule

Protective Action

Basic web protection rules

  • Block
  • Log only

CC attack protection rules

  • Verification code
  • Block
  • Block dynamically
  • Log only

Precise protection rules

  • Block
  • Allow
  • Log only

Blacklist and whitelist rules

  • Block
  • Allow
  • Log only

Geolocation access control rules

  • Block
  • Allow
  • Log only

Website anti-crawler protection

Protective actions for feature-based anti-crawler rules:

  • Block
  • Log only