AWS IP bypassing WAF despite custom rules
Any idea how an IP address is able to bypass my custom rules? I can only see the traffic due to a wild card rate limiting rule set to log.
This bot always gets stuck in the same pages and the URLs have the same parameters.
The following WAF rules have been ineffective:
- targeting the IP
- targeting the user agent
- targeting the parameters
- targeting the URLs
- multiple combinations of the above
0 Replies