I’ve setup a rate limiting rule for .aspx web page requests. The rule will block an IP address if the rate of requests exceeds 65 pages per minute. That rule works great.
However, we have a special page that I must exclude from this rate limiting rule because it is appropriately called multiple times at a high rate. This page also matches our rule pattern *.aspx
How can I exclude a specific special.aspx web page from being counted by the *.aspx rate limiting rule?
I cannot use the Bypass feature of the Rate Limiting Rule because Bypass evidently does not accept * wildcard character. We are an Enterprise customer and need the Bypass to apply to special.aspx for all domains. Bypass using */special.aspx doesn’t appear to work.
I’ve tried to setup a Page Rule to turn off the WAF processing for this special.aspx page, but that does not work.
Since special.aspx also uses URL parameters, should I have used /special.aspx as my matching string in the Page Rule?