Exception Target Management
Exception Targets are a whitelist that are always treated as normal users and are not detected or blocked by configured policies.
Overview
All access requests from users registered as exception targets are processed as Pass.
Exception Criteria
Exception targets can be registered based on four criteria:
| Criteria | Description | Application Scope |
|---|---|---|
| IP | Specific IP address or IP range (CIDR) | All requests from that IP |
| Session ID | Specific session ID | All requests from that session |
| Login ID | Specific login ID | All requests from that login ID |
| User Agent | Specific User-Agent string | All requests with that User-Agent |
When registering exception targets by user agent, all policies are automatically selected as exception scope. Used to allow all requests with specific User-Agents such as search engine crawlers.
Exception Target Registration
Step 1: Access Registration Screen
- Navigate to Policy > Exception Target menu in the BotManager console.
- The registered exception target list is displayed.
| Column | Description |
|---|---|
| No | Sequence number |
| Type | IP / Session ID / Login ID / User Agent |
| Target | Value to be exception processed |
| Policy | Policies selected as exception targets (all policies or specific policy list) |
| Registrant | User who registered |
| Registration Date | Registration date and time |
| Modification Date | Last modification date and time |
Step 2: Add Exception Target
- Click the + registration button.
- Select exception criteria (IP / Session ID / Login ID / User Agent).
- Enter target value:
- IP: Single IP (
192.168.1.1) or IP range (192.168.1.0/24) - Session ID: Session identifier
- Login ID: Login account ID
- User Agent: User-Agent string (e.g.,
Googlebot)
- IP: Single IP (
- Policy Selection:
- IP / Session ID / Login ID: Select applicable policies individually
- User Agent: All policies are automatically selected (cannot be changed)
- Click the Save button.
When registering with IP, Session ID, or Login ID, you can exception process only specific policies. For example, if you register IP 192.168.1.100 and select only the "Excessive URL Requests (1 second)" policy, that IP is subject to other policies but only the selected policy is exception processed.
Exception Target Modification
- Select the exception target to modify from the list.
- Click the Modify button.
- Change selected policies.
- Target values (IP, Session ID, Login ID, User Agent) cannot be changed.
- Click the Save button.
Exception Target Deletion
- Select the exception target to delete from the list.
- Click the Delete button.
- Click Confirm in the confirmation dialog.
Usage Examples
Internal IP Range Exception
Purpose: Allow all access from internal network
Registration Method:
- Type: IP
- Target:
192.168.1.0/24(using CIDR notation) - Policy Selection: Select all policies
Search Engine Crawler Exception
Purpose: Allow search engine crawlers
Registration Method:
- Type: User Agent
- Target:
Googlebot(orBingbot,Slurp, etc.) - Policy Selection: All policies automatically selected
VIP User Exception
Purpose: Allow all access from VIP members
Registration Method:
- Type: Login ID
- Target:
vip_user_001 - Policy Selection: Select all policies