The following section explains how to add requests that match certain conditions to the Allowlist.

Custom Rule Syntax:

SecRule 'Variable "@match criteria"' "id:4000104,phase:1,t:none,pass,ctl:ruleEngine=off,chain" SecRule REMOTE_ADDR "@ipMatch" "t:none"


In this example, all requests from to all URLs starting with “/admin” are added to Allowlist. Since there are two conditions to be fulfilled, a chain rule is used.

SecRule REQUEST_URI "@beginsWith /admin" "id:4000104,phase:1,t:none,pass,ctl:ruleEngine=off,chain" SecRule REMOTE_ADDR "@ipMatch" "t:none"