WAF OR referer not working

can someone help me, i try only allow access if referer match this two domain but this configuration seems not working :frowning:

ne is an exact match. Referer will contain the protocol, and usually the path, so https://domain1.com will not be equal to domain1.com. (The path behaviour can be altered by a Referrer-Policy).

Try using the contains operator instead.

Also, using OR here is not correct. It will block requests for all domains (domain1 will be matched by the first expression, and be blocked. domain2 will be matched by the second and be blocked. example.com will match both and be blocked as well. You probably want to use AND or XOR, depending on what you want to achieve.


1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.