Managed_challenge fails continuously block

Is it possible to create a rule that blocks ips for a certain period of time if managed_challenge fails continuously?

I want to be prepared for the case where a robot does not pass and a human passes it.

thank you.

This is only possible natively with Advanced Rate Limiting which is an Enterprise product.

Use dynamic fields. Customers can now combine Rate Limiting with rules detecting known vulnerabilities, such as WAF machine learning score. For example, you can block eyeballs after a number of consecutive requests flagged as SQLi have hit your site.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.