[GH-ISSUE #116] waf_cc_deny doesn't work or doesn't count 404 request #88

New issue

Open

opened 2026-03-04 12:18:50 +03:00 by kerem · 0 comments

kerem commented 2026-03-04 12:18:50 +03:00

Owner

Copy link

Originally created by @droplinxuser on GitHub (Nov 22, 2022).
Original GitHub issue: https://github.com/ADD-SP/ngx_waf/issues/116

If I only have this config:
waf_cc_deny on rate=20r/30s duration=1m zone=waf:cc;
It works fine and limit rate 404 request.

But when I add the captcha mode, it doesn't limit rate 404 request anymore.
waf_captcha off prov=reCAPTCHAv3 file=path_to_/v3.html secret=xxxxxx;
waf_action cc_deny=CAPTCHA zone=waf:action;

Using LATEST 'Current' VERSION on Nginx 1.23.2, Ubuntu 22.04, Non-Docker.

Originally created by @droplinxuser on GitHub (Nov 22, 2022). Original GitHub issue: https://github.com/ADD-SP/ngx_waf/issues/116 If I only have this config: `waf_cc_deny on rate=20r/30s duration=1m zone=waf:cc;` It works fine and limit rate 404 request. But when I add the captcha mode, it doesn't limit rate 404 request anymore. `waf_captcha off prov=reCAPTCHAv3 file=path_to_/v3.html secret=xxxxxx;` `waf_action cc_deny=CAPTCHA zone=waf:action;` Using LATEST 'Current' VERSION on Nginx 1.23.2, Ubuntu 22.04, Non-Docker.

kerem referenced this issue 2026-03-13 17:01:38 +03:00

[GH-ISSUE #88] ngx_waf 的 paranoia level 調整 #203

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

lts

lts-dev

add_sp/refactor-replace-libcurl-with-subreq

current-dev

current

current-dev-backup

v6.1.10

v10.1.2

v6.1.9

v6.1.8

v10.1.1

v10.1.0

v6.1.7

v10.0.1

v10.0.0

v9.0.6

v9.0.5

v6.1.6

v6.1.5

v9.0.4

v9.0.3

v9.0.2

v9.0.1

v9.0.0

v8.0.3

v6.1.4

v8.0.2

v8.0.1

v6.1.3

v8.0.0

v7.1.0

v6.1.2

v7.0.1

v7.0.0

v6.1.1

v6.1.0

v6.0.3

v6.0.2

v6.0.2-beta.1

v6.0.1

v6.0.1-beta.2

v6.0.1-beta.1

v6.0.0

v6.0.0-beta.4

v5.5.1

v6.0.0-beta.2

v6.0.0.beta.3

v6.0.0-beta.1

v5.5.0

v5.4.2

v5.4.2-beta.2

v5.4.2-beta.1

v5.4.1

v5.4.1-beta.1

v5.4.0

v5.4.0-beta.1

v5.3.2

v5.3.1

v5.3.0

v5.3.0-beta.4

v5.3.0-beta.3

v5.3.0-beta.2

v5.3.0-beta.1

v5.2.0

v5.2.0-beta.2

v5.2.0-beta.1

v5.1.1

v5.1.1-beta.1

v5.1.0

v5.0.0

v5.0.0-beta.5

v5.0.0-beta.4

v5.0.0-beta.3

v5.0.0-beta.2

v5.0.0-beta.1

v4.1.0-beta.4

v4.1.0-beta.3

v4.1.0-beta.2

v4.1.0-beta.1

v4.0.0

v4.0.0-beta.2

v3.1.6

v3.2.0-beta.1

v3.1.5

v3.1.4

v3.1.3

v3.1.2

v3.1.1

v3.1.0

v3.1.0-beta-1

v3.0.3-beta-3

v3.0.2

v3.0.3-beta-2

v3.0.3-beta-1

v3.0.2-beta-2

v3.0.2-beta-1

v3.0.1

v3.0.0

v3.0.0-beta-2

v3.0.0-beta-1

v2.1.1

v2.1.0

v2.0.2

v2.0.1

v2.0.1-beta-1

v2.0.0

v2.0.0-beta.1

v1.0.1

v1.0.0

v1.0.0-RC2

v1.0.0-RC1

Labels

Clear labels   

MacOS

  

Nginx

  

OpenResty

  

Tengine

  

bug

  

documentation

  

enhancement

  

needs-investigation

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

stale

  

stale

  

stale

  

timeout

  

wontfix

No labels

MacOS

Nginx

OpenResty

Tengine

bug

documentation

enhancement

needs-investigation

pull-request

question

stale

stale

stale

timeout

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ngx_waf#88

No description provided.