Randomized WAF responses

By default, the web application firewall has a single, standard response for blocked requests, but you can vary this to confuse attackers.


Use this solution in your VCL service (click RUN below to test this solution or clone it to make changes):

User contributed notes

We welcome comments that add use cases, ideas, tips, and caveats. All comments will be moderated before publication. To post support questions, visit our support center and we'll find you the help you need.