| title | pcx_content_type | sidebar | ||||||
|---|---|---|---|---|---|---|---|---|
Account-level WAF configuration |
concept |
|
:::note This feature requires an Enterprise plan. :::
The account-level Web Application Firewall (WAF) configuration allows you to define a configuration once and apply it to multiple Enterprise zones in your account. Instead of configuring each zone individually, you create rulesets at the account level and use expressions to control which zones and traffic they apply to.
For example, you can deploy a single ruleset that applies to /admin/* URI paths across both example.com and example.net. Rulesets can target all incoming traffic or a specific subset.
At the account level, WAF rules are grouped into rulesets. You can perform the following operations:
- Create and deploy custom rulesets
- Create and deploy rate limiting rulesets
- Deploy managed rulesets