Adding a Rate Limiting Rule to a Web Application Firewall Policy
Add a rate limiting rule to allow the inspection of HTTP request properties and to limit the request frequency for each unique client IP address associated with web application firewall (WAF) policy.
Using the Console
- On the Policies list page, select the WAF policy that you want to add a rate limiting rule to. If you need help finding the list page or the policy, see Listing Web Application Firewall Policies.
- On the WAF policy's details page, under Policy, select Rate limiting.
- Select Manage rate limiting.
- In the Manage rate limiting window, select Add rate limiting rule.
-
In the Add rate limiting rule panel, enter the following information:
- Name: Enter a name for the rate limit rule.
-
Conditions: Specify the prerequisite conditions that must be met for the actions/rule actions to occur. The parameters displayed can vary depending on the values that you select for Condition type and Operator. Select + Another condition to add another condition linked to the first one using AND. Select X to delete the associated condition row.
(Optional) Select Show advance controls to specify a condition in the box using the condition syntax. See Understanding Conditions.
-
Rate limiting configuration: Enter the following conditions that are required to be met before the conditions apply.
- Requests limit: Enter the maximum number of requests made.
- Period in seconds: Enter the number of seconds passed.
- Action duration in seconds: Enter the duration of the action in seconds.
-
Rule action: Select an existing rule to be followed when the preceding conditions are met, or select Create New Action to add one.
- Check: An action which doesn't stop the execution of rules in current module. Instead it generates a log message documenting result of rule execution.
-
Preconfigured Check Action: Allows the running of rules and generates a log message that documents the result.
- Return HTTP response: An action which cancels all further processing of an HTTP request or HTTP response and returns a predefined HTTP response that can be configured in the action definition.
-
Preconfigured 401 Response Code Action: Returns a defined HTTP response. The response code configuration (headers and response page body) determines the HTTP response that's returned when this action is run.
Select Show header details to display the HTTP response headers specified in the selected return HTTP response action.
Select Show response page body details to display the HTTP response body specified in the selected "return HTTP response" action.
For more information, see Actions for Web Application Firewalls.
- Select Add rate limiting rule.
- In the Manage rate limiting window, select Save changes.