Imperva Cyber Community

communities_1.jpg
 View Only
  • 1.  Allowlist

    Posted 05-06-2024 15:38

    Hi, everybody please help with this i need to block all IPs to access to my applicattion but only allow to some IPs. I tried creating a allowlist but still access rest all IP,  I think it could be with a rule deny and allowlist but me confused.

    Thanks


    #CloudWAF(formerlyIncapsula)

    ------------------------------
    osmar murillo
    Security TI
    BOL - Banco Ganadero
    Santa Cruz
    ------------------------------


  • 2.  RE: Allowlist

    Posted 05-07-2024 12:11

    Hi Osmar,

    I hope you are well.

    You can achieve what you have described by creating an ACL policy and set the policy to block all IP's with the configuration 0.0.0.0/0, then in the exception list you can add the IP's you want to exclude from the ACL. 

    This will block all IP's but allow the IP's listed in your exception to access the site:



    ------------------------------
    Ciaran McAnespy
    Technical User
    Tel Aviv CA
    ------------------------------



  • 3.  RE: Allowlist

    Posted 05-08-2024 11:27

    Hi, Osmar.

    The method Ciaran described is the recommended method.

    For your clarification, AllowLists will allow any IPs listed to bypass all security policies

    This should be used sparingly, and only when absolutely necessary. 



    ------------------------------
    Jaired Anderson
    Imperva
    https://www.imperva.com/
    ------------------------------