If you want the WAF to also ignore all attacks from your whitelisted IPs, you must enable this option:
https://www.atomicorp.com/wiki/index.php/ASL_WAF#MODSEC_00_WHITELIST
This is disabled by default because most users will still want to detect and block attacks from whitelisted IP, although they may not want to shun them. You should only put hosts on the whitelist that you know will never be compromised.
Comments
0 comments
Please sign in to leave a comment.