Create WAF Rules


Rules are composed of one or more conditions.

Size-based Rules for request body

Step 1: Click Create Rule

Step 2: Give it a name, like LargeBodyMatchRule

Step 3: For Rule type, keep Regular rule

Step 4: In Add conditions section, select

  • does
  • match at least one of the filters in the size constraint condition
  • LargeBodyMatch – the name of the condition we created for large request body rule

Step 5: click Create

cloud.vn

SQLInjection-based Rules for request body

Step 1: Click Create Rule

Step 2: Give it a name, like SQLinjectionRule

Step 3: For Rule type, keep Regular rule

Step 4: In Add conditions section, select

  • does
  • match at least one of the filters in the size constraint condition
  • SQLinjectionRule – the name of the condition we created for SQLinjectionRule

Step 5: click Create

cloud.vn

Rate-based Rules for request body

A rate-based rule that prevents an overwhelming number of requests (either valid or invalid) from flooding our API

Step 1: Click Create Rule

Step 2: Give it a name, like RequestFloodRule

Step 3: For Rule type, select Rate-based rule

Step 4: For Rate limit, use 2000

Step 5: click Create

cloud.vn