HI
@Gajendra Lowanshi,
Your description is not quite clear. So you mean to say, you enrolled an application URL in Incapsula and in your firewall you added our Incapsula IP ranges so that the application URL can be accessed only via our Incapsula and others will be blocked? That is the right way of doing it. Source should be our Incapsula IP ranges and destination should be the application webserver public IP and allow port 443.
Then you are saying that you are still able to access the application URL via IP address? If that is the case, then it should configured correctly from your side. Maybe your network team? You need to ask, if i have a domain URL for the application, why i am still able to access via IP? You network team or any other relevant team who helped you create a domain can help you with that.
Please correct me if i am wrong anywhere in understanding your query.
------------------------------
Nikhil Chodankar
Prudential Services Asia
------------------------------
Original Message:
Sent: 12-30-2020 05:36
From: Gajendra Lowanshi
Subject: URL WAF enrolled
URL WAF enrolled and also the firewall policy configured to only allow to access URL through WAF IP ranges.
Still we can able to access the URL with it's Global IP address, Should be accessible with IP or not ? if you don't want to be accessible through IP address what i can do.
#CloudWAF(formerlyIncapsula)
------------------------------
Gajendra Lowanshi
Pune
------------------------------