Rules
Rules define conditions under which incoming requests to a Site should be allowed or blocked. Each rule has a type, a set of expressions, and an action.
Rule properties
| Field | Description |
|---|---|
| Type | The kind of matching to perform (see below). |
| Expressions | One or more conditions to evaluate. All expressions in a rule are evaluated together. |
| Action | Allow or Block — what to do when the rule matches. |
| Status code | HTTP status code returned when the request is blocked (e.g. 403). |
| Reason | Message included in the blocked response. |
| Verbose mode | Log detailed information for each request evaluated by this rule. |
Rule types
IP
Matches requests by the client's IP address. Expressions support:
| Operator | Description |
|---|---|
is in | IP is within a specific CIDR range (e.g. 192.168.0.0/24). |
is not in | IP is outside a CIDR range. |
equals | IP matches exactly. |
does not equal | IP does not match exactly. |
is abroad | IP is detected as originating outside the server's country (requires IP geolocation). |
Multiple IP values can be comma-separated in a single expression.