For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
HUMAN DashboardHUMAN WebsiteRequest a Demo
Product GuidesEnforcer GuidesMobile SDKAPI ReferenceCustomer support
Product GuidesEnforcer GuidesMobile SDKAPI ReferenceCustomer support
  • General
    • About Enforcers
    • Support first-party HUMAN calls
    • Troubleshoot Enforcer configurations
  • Enforcer frameworks
    • Akamai ESI
    • Apache - C Module
    • ASP.NET
    • Callout Enforcer
    • Envoy Proxy
    • F5 BIGIP
    • Fastly JavaScript Compute@Edge
      • Fastly VCL changelog
        • Installing the Enforcer
        • GraphQL Support
        • Sensitive GraphQL Operations
        • Basic Configuration
        • Customized Subroutines
        • Additional Activity Handler
        • Advanced Blocking Response
        • Creating and Configuring the Edge-Dictionary
        • Custom CSS
        • Custom First Party Sensor Endpoint
        • Custom Logo
        • Custom JS Script
        • Custom Parameters
        • Filter Requests
        • Filter by HTTP Method
        • Filter by Route
        • Filter by Extension
        • Filter by IP
        • Filter by User Agent
        • Data Enrichment
        • First Party
        • First Party Snippet
        • Enforced Routes
        • Login Credentials Extraction
        • Modify First Party Response
        • Module Context Object
        • Module Enabled
        • Module Mode
        • Monitored Routes
        • Returning A Custom Block Page
        • Sensitive Routes
        • Test Block Flow on Monitoring Mode - Bypass Monitor Header
        • Upgrading the Enforcer
    • Google Cloud Platform (GCP) Callout Enforcer
    • Kong Plugin
    • NGINX - C Module
    • NGINX - LUA Module
    • PHP
    • Python
    • Ruby
    • Salesforce Commerce Cloud Cartridge
LogoLogo
Login
Login
HUMAN DashboardHUMAN WebsiteRequest a Demo
Enforcer frameworksFastly VCLV9 and Below

Monitored Routes

Was this page helpful?
Previous

Returning A Custom Block Page

Next
Built with

In some cases, you might want to monitor a specific endpoint, and potentially pass traffic that should be blocked, even when the rest of your application is still in the Active Blocking mode. For example, in case of a change in the site topology, to prevent a possible false positive.

This feature allows you to configure specific routes that will go through the full Enforcer workflow. However, these routes will behave as if the Enforcer were in the Monitor mode rather than the Active Blocking mode. These routes will not be blocked, but they will generate risk and async activities. Any block activities will always be simulated blocks.

TO define a monitored route:

  1. Open the PX_CUSTOM.vcl file.
  2. Add the required route in the px_custom_monitored_routes custom subroutine, as shown below.

EXAMPLE

1sub px_custom_monitored_routes {
2  if (req.url.path ~ {"^/prefix|^/exact/match$"}) {
3     set req.http.X-PX-monitored-route = "1";
4  }
5}

To learn more about custom subroutines, see Customized Subroutines.

TO enable the feature:

  1. Open the PX_CONFIG.vcl file.
  2. Set the px_monitored_routes_enabled value to “true” (enabled). The default is “false” (disabled).
1table px_configs {
2  "px_monitored_routes_enabled": "true",
3}

TEST
  1. Make sure your application is in the Monitor mode.
  2. Send a request to one of the newly configured enforced routes, using Python 123 as the browser user-agent.
  3. if you didn’t get a CAPTCHA page, the feature is configured correctly.