Atomicorp

Why are whitelisted IPs still blocked by the WAF? Follow

mikeshinn

March 08, 2018 20:31
Updated

If you want the WAF to also ignore all attacks from your whitelisted IPs, you must enable this option:

https://www.atomicorp.com/wiki/index.php/ASL_WAF#MODSEC_00_WHITELIST

This is disabled by default because most users will still want to detect and block attacks from whitelisted IP, although they may not want to shun them. You should only put hosts on the whitelist that you know will never be compromised.

Comments

0 comments

Please sign in to leave a comment.

PAX PHP errors
ASL Installation Pre-requisites
Error: Package: jq-1.5-1.el7.art.x86_64 (@asl-4.0)
Cannot determine user of subject (polkit-error-quark, 0)
Custom ASL Rule Modifications
Kernel updates not working
Fix rpmdb: Thread died in Berkeley DB library
HTTP request sent, awaiting response... 401 Authorization Required
Adding a Hostname or IP to the Dynamic White List in ASL
Can't install Plesk ASL

Articles in this section