Allow/Deny lists
With this feature you can allow or deny access to your website to certain IP addresses. This measure is required for custom control of the WAF rules, if you do not agree with it or if it shows you the blocking message.


It is easy to use:
- Proceed to the firewall page and press settings button on the right corner of the attacks logs window.
- Choose the relevant list and type the IP you want to allow/deny access to.
Or simply press the plus button in the attacks logs and the IP will be automatically whitelisted.
Usually, it takes up to 15 minutes to work.
If you are getting WebTotem blocking message or WebTotem prevents you from working with your website or additional plugins/services, you can simply whitelist these pages in the WebTotem Firewall settings and the error will go away.
- Copy the exact URL from the attack log description (Attack location column) ignoring the command GET/POST at the beginning and HTTP/1.1 at the end. Add it to the URL Allowlist in the firewall settings.


2. If you want to set a global rule and exclude the blocking of the requests containing the common known path, for example, /admin/, add this path to the URL allowlist.
With /admin/ path added to the allowlist, all the requests containing the part /admin/ will be allowed by the WAF.
For instance, /admin/editor/?page=news
It is recommended to whitelist the URL only if it needs to be accessible for all of your visitors. If it is occurring in the admin area of your site, it is best to Whitelist your IP address.
