Skip to content
WAF
Visit WAF on GitHub
Set theme to dark (⇧+D)

Deploy rulesets via API

Use the Rulesets API to deploy and configure rulesets at the account level or at the zone level.

Deploying Managed Rulesets

You can deploy Managed Rulesets to the http_request_firewall_managed Phase supported by the Cloudflare WAF, both at the account level and at the zone level. You can also define overrides to customize the behavior of the rules included in a Managed Ruleset.

To learn more about deploying Managed Rulesets and configuring overrides using the Rulesets API, see Work with Managed Rulesets.

Deploying custom rulesets

You can create custom rulesets in the http_request_firewall_custom Phase at the account level. After creating a custom ruleset, you can deploy it to a Phase at the account level by creating an execute rule in the Phase.

To learn more about creating and deploying custom rulesets using the Rulesets API, see Work with custom rulesets.