After you add a website to Web Application Firewall (WAF), you can configure a whitelist for Bot Management to allow trusted access requests of the website to bypass the detection of Bot Threat Intelligence, Data Risk Control, Intelligent Algorithm, and App Protection. This whitelist is used to allow access requests that are blocked by mistake.
Prerequisites
- A WAF instance is purchased. The instance must meet the following requirements:
- The instance is billed on a subscription basis.
- Bot Management is enabled. This feature is a value-added service.
For more information, see Purchase a WAF instance.
- Your website is added to the WAF console. For more information, see Add domain names.
Background information
- Allowed Crawlers
- Bot Threat Intelligence
- Data Risk Control
- App Protection
- Intelligent Algorithm
After the preceding detection modules but Allowed Crawlers are enabled, normal access requests may be blocked by mistake. In this case, you can configure a whitelist to allow trusted access requests to bypass the detection of a specific module in Bot Management.
We recommend that you specify rules for the whitelist as precisely as possible to ensure that only trusted access requests are allowed.