i need a little clarification please.
i have frequent jschallenge on WAF generated from origin server.
service is bot fight mode , path is /wp-admin/admin-ajax.php , query string is ?action=as_async_request_queue_runner&nonce=4e34488b94
it is safe to whitelist and allow origin IP ?
or it is better to do somethig more specific?
i am not expert in security and i appraciate any help