Implement WAF on sub-domain level

Is it possible to implement WAF security rulesets on a specific sub-domain only, not affecting the other sub-domain within the domain. Thanks


For WAF Custom Rules, you just add the subdomain as part of your filter:

Hostname equals ""
URI Path equals "/login.php"

For a Managed Ruleset, you click on its title to edit and configure it, then you’ll see a button at the top right where it says “Edit Scope”, which will allow you to add a filter just like in a Custom Rule.


This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.