Common use cases

The following common use cases illustrate how to secure web traffic to your sites and applications with custom rules:

• Allow traffic from IP addresses in allowlist only
• Allow traffic from search engine bots
• Allow traffic from specific countries only
• Block Microsoft Exchange Autodiscover requests
• Block requests by Threat Score
• Block traffic from specific countries
• Challenge bad bots
• Configure token authentication
• Exempt partners from Hotlink Protection
• Issue challenge for admin user in JWT claim based on attack score
• Require a specific cookie
• Require known IP addresses in site admin area
• Require specific HTTP headers
• Require specific HTTP ports
• Stop R-U-Dead-Yet? (R.U.D.Y.) attacks
• Update custom rules for customers or partners