To whitelist all requests that match certain conditions.

Custom Rule Syntax

SecRule 'Variable "@match criteria"'"id:4000104,phase:1,t:none,pass,ctl:ruleEngine=off,chain" SecRule REMOTE_ADDR "@ipMatch 10.0.0.0/8" "t:none"

Example

In this example, all requests from 10.0.0.0/8 to all URL’s starting with “/admin” are whitelisted. Since there are two conditions to be fulfilled, a chain rule is used.

SecRule REQUEST_URI "@beginsWith /admin" "id:4000104,phase:1,t:none,pass,ctl:ruleEngine=off,chain" SecRule REMOTE_ADDR "@ipMatch 10.0.0.0/8" "t:none"