Hey Ruslan,

I will check with the team to provide more specific details and tailored implementations for your use cases.

In the meantime, you can check out our WAF documentation to get familiar with the syntax and capabilities of the system.

The Web Application Firewall is available only on our V1 Load Balancer, so if you're using HAProxy, you'll need to transition to the Cycle Native LB (V1).

While the API supports WAF configuration at both the controller level and the top-level load balancer level, the portal currently only supports the top-level LB scoped configuration. Controller-scoped WAF support in the portal is coming soon!

I'll have a more complete answer for you soon!

Hi Ruslan,

Cycle's WAF is brand new, and as such we're still adding new features to it. Right now, it's pretty basic, and handles allow/block lists into an environment based on IP ranges. In the near future, we'll be adding more support for the protections you've listed above. We already have it on our road map :)

If there are any other things you'd like to see in the WAF as we continue to build it out, let us know, thanks!