Such as black and white list of IPs or IP range, uri black and white list, and request body black list, etc.
Directives and rules are easy to write and readable.
The IP detection is a constant-time operation. Most of the remaining inspections use caching to improve performance.
Compatible with ModSecurity's rules, you can use OWASP ModSecurity Core Rule Set.
Friendly crawler verification
Supports verifying Google, Bing, Baidu and Yandex crawlers and allowing them automatically to avoid false positives.
Supports three kinds of captchas: hCaptcha, reCAPTCHAv2 and reCAPTCHAv3.