WAF mode



Mode definition

Smart

In this mode, the creoline WAF works based on signals and balanced risk management. Based on the Internet connection, location and request information, visitors to the target website are either immediately redirected upstream or, in the event of suspicion, are shown a JavaScript Proof-of-Work Challenge page. This mode is suitable for the normal operation of a website.


Strict

In Strict mode, all incoming HTTP requests are immediately forwarded to the JavaScript challenge. No request can be forwarded upstream without proof-of-work unless it is explicitly authorized by the user-defined rules. This mode is particularly suitable for websites that are subject to massive attacks by bots, scrapers or botnets.


Pass-through

In pass-through mode, all rules and signals are completely deactivated. Incoming HTTP requests are forwarded transparently to the upstream and no rule evaluation takes place. This mode is particularly suitable for websites where the creoline WAF should only be activated temporarily.

Similar articles
On this page
Emergency?
In urgent cases, our emergency hotline is available around the clock at +49 2507 900 80 - 34.