Link11 WAAP
v5
v5
  • Link11 WAAP Documentation
  • Release Notes
  • Known Issues
  • User Guide
    • Introduction to Link11 WAAP
  • How Link11 WAAP Works
    • Traffic Filtering Process
    • Traffic Reporting and Analytics
    • Policy Mapping and Traffic Routing
    • Tagging
    • UI Overview and Common Elements
  • Console UI Walkthrough
    • Analytics
      • Dashboard
      • Events Log
    • Security
      • Global Filters
      • Flow Control Policies
      • Security Policies
      • Rate Limit Rules
      • ACL Profiles
      • Actions
      • Dynamic Rules
      • Quarantined
      • Content Filter
        • Content Filter Profiles
        • Content Filter Rules
    • Sites
      • Server Groups
      • Proxy Templates
      • Mobile Application Groups
      • Backend Services
      • Edge Functions
      • DNS Records
      • SSL
        • Load Balancers
        • Certificates
    • System
      • Interactive Challenge
      • SSO Configuration
      • Purge CDN Cache
      • Users Management
      • Security Alerts
      • Log Exporters
      • Version Control
      • System DB
      • Publish Changes
    • Account
  • Using the product
    • Best Practices
      • Saving and Publishing Your Changes
      • Enabling Passive Challenges
      • Understanding and Diagnosing Traffic Issues
    • How Do I...
      • Authenticate mobile app users
      • Ban, unban, and allowlist traffic sources
      • Bypass Link11 WAAP for loadtesting or other purposes
      • Configure a new path/section of a site
      • Control caching behavior
      • Enable GraphQL traffic
      • Enable mTLS (mutual TLS)
      • Protect sensitive information in logs and analytics
      • Quickly block an attacker
      • Redirect or block HTTP traffic
      • Run custom code
      • Set rate limits and exemptions
      • Stream event data to a SIEM solution or other destination
    • The Link11 WAAP API
      • Overview
      • Internal data structures
      • Using Swagger UI
      • Using curl
  • Reference Information
    • Acronyms
    • API
      • API access to traffic data
      • Types of namespaces
      • Namespace reference
        • ACL Profiles
        • Actions
        • Backend Services
        • Certificates
        • Configs
        • Content Filter Profiles
        • Content Filter Rules
        • Data queries
        • Dynamic Rules
        • Edge Functions
        • Flow Control Policies
        • Global Filters
        • Load Balancers
        • Log Exporters
        • Mobile Application Groups
        • Planets
        • Proxy Templates
        • Rate Limit Rules
        • Security Alerts
        • Security Policies
        • Server Groups
        • Tags
        • Tools
        • Users
    • Hostile Bot Detection / LWCSI
      • Environmental detection and browser verification
      • Client authentication
      • Biometric behavioral verification
    • HTTP Response Codes
    • Log Exporter Output
    • Pattern Matching Syntax
    • Query Filter Syntax and Best Practices
  • Support
Powered by GitBook
On this page
  • How to ban a requestor
  • How to unban a requestor
  • How to allowlist a requestor

Was this helpful?

Export as PDF
  1. Using the product
  2. How Do I...

Ban, unban, and allowlist traffic sources

PreviousAuthenticate mobile app usersNextBypass Link11 WAAP for loadtesting or other purposes

Last updated 1 month ago

Was this helpful?

The section shows a list of traffic sources (i.e., sources of incoming requests) that are currently banned, blocklisted, and allowlisted.

How to ban a requestor

A traffic source is banned automatically when it violates a .

You cannot manually move a traffic source into quarantine. Instead, you can create a Dynamic Rule to do it for you. The Dynamic Rule's parameters should be as follows:

  • It should be active (in other words, the Inactive toggle should not be selected).

  • Target should be set to IP

  • Number of events should be 0

  • Action should be a blocking action (e.g., Dynamic-rule block)

  • Quarantine Time should be the length of time you wish the ban to last

  • The Exclude list should be empty

  • The Include list should not contain all

  • The Include list should contain the tag(s) that will uniquely identify requests coming from the traffic source.

How to unban a requestor

Manually removing a requestor from quarantine is discussed here: .

How to allowlist a requestor

To exempt a traffic source from other stages of filtering, do one of the following:

To exempt a traffic sources from potential quarantine, add identifying tags to the .

To bypass all stages of filtering, follow the steps described here: .

To exempt requests only from bot challenges or content filtering, configure an with appropriate tag(s) in the Bypass list, then use a to assign that ACL Profile to the desired paths/URLs.

To exempt requests only from bot challenges, configure an with appropriate tag(s) in the Bot Challenge / Skip list, then use a to assign that ACL Profile to the desired paths/URLs.

Bypass Link11 WAAP for Loadtesting or Other Purposes
ACL Profile
Security Policy
ACL Profile
Security Policy
Quarantine
Dynamic Rule
Cancelling quarantines and preventing False Positives
Exclude list in the active Dynamic Rules