Security & WAF Per-domain rule list of user-agent rules

disallowed_user_agents

Block requests whose User-Agent matches a rule.

Config key: disallowed_user_agents
Scope: Per-domain rule
Type: list of user-agent rules
Default: none

A list of user-agent rules; a request whose User-Agent header matches any rule is blocked. Each rule pairs a string with a match_type (Equals, Contains, StartsWith, …), so you can block an exact agent or any UA containing a token.

[[proxy_rules.disallowed_user_agents]]
user_agent = "BadBot"
match_type = "Contains"

← Back to all documentation