Cookie is set
Matches when a cookie with the exact specified name is present in the request.
Conditions
Conditions are logical criteria used to determine if one or more actions are applied to an incoming request or response.
Cookie is not set
Matches when a cookie with the exact specified name is absent from the request.
Cookie value matches
Matches when a specific request cookie’s value matches a regular expression pattern.
Cookie value does not match
Matches when a specific request cookie’s value does not match a regular expression pattern.
Country of origin is
Matches when the request originates from one or more countries included in the Selected countries list.
Country of origin is not
Matches when the request originates from a country not included in the Selected countries list.
IP address in set
Matches when the requester’s IP address is present within a specified address set.
IP address not in set
Matches when the requester’s IP address is absent from a specified address set.
IP address is allowlisted
Matches when the requester’s IP address is present in the allowlist.
IP address is not allowlisted
Matches when the requester’s IP address is absent from the allowlist.
IP address is a threat
Matches when the requester’s IP address is a known malicious source.
IP address is not a threat
Matches when the requester’s IP address is not a known malicious source.
Random
Matches a specified percentage of traffic based on a random selection.
Rate limit
Matches when requests for a specific client exceed a defined threshold within a set duration.
Referrer is
Matches when the Referer request header matches one or more specified wildcard patterns.
Referrer is not
Matches when the Referer request header does not match any wildcard patterns.
Referrer is defined
Matches when the Referer request header matches one or more application aliases.
Referrer is not defined
Matches when the Referer request header does not match any application aliases.
Request header value matches
Matches when the value of a specific request header matches a regular expression.
Request header value does not match
Matches when the value of a specific request header does not match a regular expression.
Request headers match
Matches when any specified request header names and patterns match.
Request headers do not match
Matches when any specified request header name or pattern is missing or mismatched.
Request method is
Matches when the request method is one of the selected methods.
Request method is not
Matches when the request method is not one of the selected methods.
Response headers match
Matches when any specified response header names and patterns match.
Response headers do not match
Matches when any specified response header name or pattern is missing or mismatched.
Status code matches
Matches when the HTTP response status code matches provided codes or classes.
User agent matches
Matches when the User-Agent request header matches one or more regular expressions.
User agent does not match
Matches when the User-Agent request header does not match any specified regular expressions.
URL matches
Matches when the request URL matches a wildcard pattern or regular expression.
URL does not match
Matches when the request URL does not match any configured wildcard pattern or regular expression.
Feedback
Was this page helpful?
Glad to hear it! Have any more feedback? Please share it here.
Sorry to hear that. Have any more feedback? Please share it here.
Last modified March 5, 2026