You asked... We listened!Based on a lot of feedback we have received from customers, we are happy to announce the new security block durations customization option. Below is the release notes from April 30 (click here to see the whole note):Customize security block durationsWhen creating or editing a custom rule, you can now customize the Block period, overriding the default of 10-minutes, for the following security actions: Block IP and Block Session.
Fixed: Define a specific duration for the security block (i.e., 1-1440 minutes). A prolonged blocking duration deters persistent attackers more efficiently.
Randomized: Define a time range for the security block (i.e., 1-1440 minutes). Imperva selects a random duration from the range for each security block to further deter and confuse attackers.
Where it's located: In the Cloud Security Console, open the Rules page to create a new Security rule.
For more details, see:
Create Rules, Security actions (Block Session, Block IP)
Cloud WAF v2 API Definition
Thanks for posting this, Laura! This is great news for our Cloud WAF customers!