In the control panel you can set the following advanced options:
- Access Policy
- Active Bot Protection (ABP).
- Web Application Firewall (WAF).
Choose the Access Policy tab in the DDoS Protection Resource settings.
IP Access Policy
Add in the White List all IPs which your site will always be avaliable from. One per each line.
In the Black List you can add all IPs which your site will always be unavaliable from. One per each line.
Countries Access Policy
None — chosen by default, no policy is applied.
Allow by default — access will be provided to all countries except specified ones.
Block by default — access will be denied to all countries except specified ones.
Active Bot Protection
On the L7 tab we can manage Active Bot Protection (ABP) that is application level protection.
Disabled — application level protection protection is off.
Enabled — the system will be activated and will filter bots off only in case of attacks or abnormal activity. It is the most optimum mode.
Active mode — permanent protection, all bots except web spiders will be filtered off. When enable this mode, add needed web spiders into whitelist. 3 delicacy levels are available. The higher the level, the more bots will be filtered off.
Web Application Firewall (WAF)
WAF (Web Application Firewall) is intended for protection of privacy data of a site. WAF is placed on the network in front of protected web servers. It imposes a set of rules on interaction between a server and a client while processing HTTP packets. It is based on the same methods as ordinary user firewalls: monitoring of all data received from the outside. WAF uses a set of patterns which reveal an attack at signatures (user activity signs) that may indicate an attack. You can read more about WAF settings here. Contact us to enable the option and get information on pricing.
Disabled — firewall is off.
Learning — firewall accumulates statistics, form activity profile and reveal exceptions. The minimum learning period is 2 days. Do not enable it when you are under attack.
Enabled — firewall is on. To avoid false triggering choose this mode only after you passed through the Learning mode.