Both of them can block access requests from specified IP addresses. Table 1 describes the differences between the two types of rules.
Protection Rules |
Protection |
WAF Inspection Sequence |
|---|---|---|
Blacklist and whitelist rules |
This type or rules can block, log only, or allow access requests from a specified IP address or IP address range. |
Blacklist and whitelist rules have the highest priority. WAF filters access requests based on the protection rules and the triggering sequence. For details, see Configuration Guidance. |
Precise protection rules |
You can combine common HTTP fields, such as IP, Path, Referer, User Agent, and Params in a protection rule to let WAF allow or block the requests that match the combined conditions. |
Precise protection rules have lower priority compared with blacklist and whitelist rules. |