JavaScript Challenge a country without relaxing security overall (IP Access Rules)


#1

If I setup Country based JavaScript Challenging under the IP Access Rules section, for example “CN -> JavaScript Challenge” does this still blatantly block the more egregious attacks such as those in the WAF, or does it now “JavaScript Challenge” every connection from China instead?

I guess what I’m hoping to do is flat out block the nasty attack attempts, but then ‘JavaScript Challenge’ everyone else from that country code.

Have I set this up correctly or have I just relaxed security for the nastier attacks?


#2

If will challenge every - not yet challenged - request from China.


#3

Thank you Sandro. That was exactly what I was hoping would happen. :slight_smile: