This section explains creation of Exceptions. What to read next Exceptions in WAFThis section discusses Exceptions in WAF. Create ExceptionsThis section discusses Creating Exceptions for WAF policies. Workflow for MitigationFor mitigating against false positives, you need to exclude the parameters from being checked for XSS at the Rule Group level. The following is a typical mitigation workflow that an administrator user follows to handle false positives using Exceptions. WAF Exceptions with Regex Matching for ArgumentsThis section discusses configuring WAF exceptions with regex matching for arguments. NSX Advanced Load Balancer supports Regex for URL matching. Parent topic: Best Practices for working with WAF