Add an exception in the dashboard

1. Go to the zone or account dashboard page

To add an exception at the zone level:

To add an exception at the account level (Enterprise plans only):

In Exception name, enter a name for the exception.
In When incoming requests match, specify a filter expression that defines the conditions for applying the exception. When the expression matches, the WAF will evaluate the exception skipping one or more rules of WAF managed rulesets. The filter expression uses the Rules language.

In Then, select the exception type that determines which rules to skip:
- Skip all remaining rules: Skips all remaining rules of WAF managed rulesets. If you select this option, proceed to 4. Create the exception.
- Skip specific rules from a Managed Ruleset: Skips one or more rules of a managed ruleset.
Select Select ruleset.
Next to the ruleset containing the rule(s) you wish to skip, select Select rules.
A) To skip one or more rules in the ruleset:
1. Search for a rule using the available filters. You can search by description, rule ID, or tag. For example, in the Cloudflare OWASP Core Ruleset you can search for 920460 to find the rule 920460: Abnormal character escapes in request.
2. Select the checkbox next to the rule(s) you wish to skip.
3. If required, search for other rules and select them. The dashboard keeps a list of the rules you selected between searches.
B) To skip all the rules in the ruleset:
1. Select all the rules in the current page by selecting the checkbox in the table header, near Description/Rule ID. The table header will display 10 rules selected (of <TOTAL> rules).
2. Select Select all <TOTAL> rules in the table header to select all the rules across all pages.
Select Next.

(Optional) To disable logging for requests matching the exception, disable Log matching requests.
To save and deploy your exception, select Deploy. If you are not ready to deploy your exception, select Save as Draft.