<ul><li>SafeLine WAF utilizes a community-driven threat intelligence network with over 200,000 contributors to flag suspicious IPs based on behavior-based analysis.</li><li>IP addresses are blacklisted if they engage in frequent attacks across multiple sites, rapidly switch attack tactics, or trigger WAF rules in different environments.</li><li>To investigate a blacklisted IP, users can access SafePoint Cloud Home, use the IP Intelligence feature to search for the IP address, and view historical attack logs and risk assessments.</li><li>Users can enable the IP Intelligence Sharing Plan, subscribe to the Malicious IP Database, and bind the database to local WAF blacklist/deny rules to leverage real-time protection against known malicious actors through SafeLine WAF.</li></ul>

Why Your IP Got Blocked by SafeLine WAF (And What It Means)

Discover more