Why are whitelisted IPs still blocked by the WAF? Follow

mikeshinn

March 08, 2018 20:31
Updated

If you want the WAF to also ignore all attacks from your whitelisted IPs, you must enable this option:

https://www.atomicorp.com/wiki/index.php/ASL_WAF#MODSEC_00_WHITELIST

This is disabled by default because most users will still want to detect and block attacks from whitelisted IP, although they may not want to shun them. You should only put hosts on the whitelist that you know will never be compromised.

Comments

0 comments

Please sign in to leave a comment.

Add an SSL certificate
ASL Installation Pre-requisites
How to Install Atomic WAF
How Do I Enable Cloudflare?
(9901) ASLWCommon::cmd_exec - ERROR: '(1) sudo iptables-save
Error: Package: jq-1.5-1.el7.art.x86_64 (@asl-4.0)
Cannot determine user of subject (polkit-error-quark, 0)
Custom ASL Rule Modifications
Kernel updates not working
Fix rpmdb: Thread died in Berkeley DB library

Articles in this section