Traffic Reporting and Analytics
How Link11 WAAP reports on the requests it receives
Last updated
Was this helpful?
How Link11 WAAP reports on the requests it receives
Last updated
Was this helpful?
The Link11 WAAP and provide intuitive yet powerful ways of viewing your traffic.
Data is reported in terms of several statistics:
Statistic
Comment
Hits
Total incoming requests
Humans
Requests originating from humans.
Bots
Requests originating from traffic sources not (yet) verified to be human. Most of the requestors will be bots, but some will not be. More on this below.
Passed
Requests accepted by L11WAAP and passed upstream to the origin (i.e., the web server, API endpoint, etc.).
Blocked
Requests deemed to be hostile, and blocked.
Challenges
The Dashboard provides a variety of ways to view your traffic. Some of them include all of the above metrics in the same view, while others include a subset.
Link11 WAAP includes a multi-layered mechanism for distinguishing between human users and bots.
In the interface, this mechanism is summarized as "challenges." Requests from non-authenticated users will be challenged, i.e., they will undergo a process through which L11WAAP ascertains if the traffic source can be verified as a human user or not.
When a traffic source successfully passes the challenge, it will not be challenged again for the remainder of the session. For legitimate users, this entire process happens quickly (in a few milliseconds), and is invisible to the user. Users will perceive no impediment or latency in their access to the requested resources.
The process described above will result in the following statistics being incremented.
For each challenge that was not passed:
Hits
Challenge
Bots
If the challenge was passed:
Hits
Challenge
Bots (see explanation below)
Hits (incremented a second time for the post-challenge resubmission of the request)
Passed
Humans
As a result, the Bot count can sometimes be incremented even when the visitors are humans. Examples:
When a human user visits an L11WAAP-protected site for the first time, the first request does not yet have the authenticating cookies.
Static files (images, etc.) are often exempted from challenges for performance reasons. Direct requests for those URLs from a new visitor will not have cookies.
Sometimes, trusted IPs are whitelisted and exempted from challenges. They never receive authenticating cookies.
Therefore, although most of the Bot count represents non-human requests to your web application, the Bot metric is not an exact count of this.
When working with L11WAAP's traffic statistics, the following relationships can be helpful.
Hits = Passed + Blocked + Challenges
Hits = Humans + Bots
The process described on this page is the active challenge process. Out of the box, this is the challenge process that Link11 WAAP uses.
In some situations, active challenges can interfere with certain metrics such as those provided by Google Analytics. (The initial referrer information is lost.) If this is a problem, active challenges can be disabled. In this situation, passive challenges can provide effective bot protection instead.
When caching is being done by a CDN, active challenges will not occur for pages being served from the cache. Passive challenges are necessary for L11WAAP to perform bot detection in this situation.
Requests that were challenged. The is an important part of L11WAAP's traffic processing, as seen below.
For more details on this mechanism, see .
Passive challenges still include, while adding three additional benefits:
They enable : a much more powerful means of identifying automated traffic, and an important part of L11WAAP's behavioral analysis.
To learn more about passive challenges, go here:
