Allow traffic from IP addresses in allowlist only
This example skips WAF rules for requests from IP addresses in an allowlist (defined using an IP list).
-
Create an IP list with the IP addresses for which you want to allow access.
For example, create an IP list namedallowed_ipswith one or more IP addresses. For more information on the accepted IP address formats, refer to IP lists. -
Create a custom rule skipping all rules for any request from the IPs in the list you created (
allowed_ipsin the current example).- Expression:
(ip.src in $allowed_ips) - Action: Skip:
- All remaining custom rules
- Skip phases:
- All rate limiting rules
- All Super Bot Fight Mode rules
- All managed rules
- Expression:
Make sure the new rule appears before any other custom rules in the rules list.
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Directory
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- © 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark