Home ci 17. security / epycbyte-waf: ip blocking

17. security / epycbyte-waf: ip blocking

Last updated on Aug 05, 2025

WAF IP Blocking Guide

Overview

Epycbyte Web Application Firewall (WAF) provides robust security features to protect your applications and websites from malicious traffic. One of the key features is IP Blocking, which allows you to restrict access to your resources based on specific IP addresses or CIDR ranges.

Compliance Measures

  • Shared Responsibility: Ensure that your team understands the compliance requirements for IP blocking.
  • DDoS Mitigation: Use IP blocking as a layer in your DDoS defense strategy.
  • Attack Challenge Mode: Configure WAF to challenge requests from unknown IPs.
  • Web Application Firewall (WAF): Implement custom rules to block malicious IPs.

Common Use Cases

  • Blocking Malicious IPs: Prevent known attack sources from accessing your applications.
  • Competitor Blocking: Restrict access to your content from competitors or scrapers.
  • Compliance: Block IPs based on legal and regulatory requirements.
  • Geographic Restrictions: Limit access from specific regions using IP ranges.

Access Roles

  • Viewer Role: Allows viewing the Firewall overview page and listing rules.
  • Developer Role: Requires additional permissions to configure and apply rules.
  • Administrator Role: Full access to configure, save, and apply IP blocking rules.

Project Level IP Blocking

  • Available on all Epycbyte plans.
  • Configure by:
    1. Navigating to the Firewall tab in your project settings.
    2. Selecting "Configure" on the top right of the Firewall overview page.
    3. Accessing the IP Blocking section and adding desired IPs or CIDRs.

Account-Level IP Blocking

  • Available only on Enterprise plans.
  • Configure by:
    1. Navigating to your dashboard's Security tab.
    2. Selecting "Create New Rule" under the IP Blocking section.
    3. Adding blocked IPs and corresponding domains.

How-to Guide: Adding an IP Block Rule

  1. Project Level:

    • Open Firewall settings.
    • Add IP addresses and domains in the Configure New Domain Protection modal.
    • Select "Create IP Block Rule" to save changes.

  2. Account Level (Enterprise plans):

    • Use dashboard settings to create rules at the account level.

Geolocation Blocking

  • Use custom rules for blocking traffic from specific regions.
  • Contact Epycbyte support for detailed configuration steps.