API
The Gcore Customer Portal is being updated. Screenshots may not show the current version.
WAAP
WAAP
About WAAPBilling
Configure WAAP for a domainWAAP modesManage domains protected with WAAP
Protocol validationWAF and OWASP top threatsIP reputationBehavioral WAFAnti-automation and bot protectionCMS protectionCommon automated servicesAdvanced API protection
Allow and block IP addresses in firewall
Configure API access with reserved tags
Advanced rate limiting rulesAdvanced rule objects and attributesSource field objects
Create and manage custom rules
Reserved tagsPredefined tags
Create custom response pagesManage custom response pages
How does JavaScript injection work?What cookies are used by WAAP?What storage variables does WAAP use?
Enable and troubleshoot bot protectionTroubleshoot blocked usersTroubleshoot 5xx errors
API
Chosen image
Home/WAAP/Troubleshooting/Troubleshoot blocked users

Troubleshoot blocked users

Use this guide to troubleshoot cases when WAAP displays a block or challenge response page to your users.

When a user is presented with a response page, they will see the following information:

  • Reference ID: This ID is unique to each chain of requests that triggered a particular policy or custom rule. By using reference ID, you can search through your requests and determine why a security screen was displayed to that user.

  • IP address: IP address of the client that made the request.

  • Date and time: A date and time when the request was made.

This information can also be useful for diagnostic purposes and troubleshooting. If you encounter issues with a specific page and require assistance from our support team, we recommend providing these details in your support request.

View and inspect requests

1. In the Gcore Customer Portal, navigate to WAAP > Domains.

Domains page in the Customer Portal

2. Find the domain where you want to check analytics and click the domain name to open it.

3. In the sidebar menu, click Analytics > WAAP.

Analytics page in the Customer Portal

4. In the Requests table, open the Selected Field dropdown and choose Reference ID. You can find the ID on the Request details page.

5. In the search field, enter the Reference ID of a request. The table will be updated to display all requests with matching reference IDs. You can use this information to find possible patterns in the incoming traffic.

Requests table with search by Reference ID

6. Click the request ID view detailed information about the rule and the triggered request, such as HTTP method, client IP, country of origin, user agent, and more.

This information helps you understand why a user was blocked or challenged. Thus, you can decide if the user's behavior is acceptable and they can access your domain or should remain blocked. After analyzing the request details, you can create WAAP rules to block or allow the user.

Was this article helpful?

Edit on GitHub