topic Tuning best practices for crawlers in WAF https://community.checkpoint.com/t5/WAF/Tuning-best-practices-for-crawlers/m-p/253699#M329 <P>Hello Community,</P><P>I am aware that CloudGuard WAF licenses are counted per number of HTTP/HTTPS requests. In some of our websites, most of the prevented traffic comes from GoogleBots IP addresses. These bots are crawlers that index the websites for search engines, but CloudGuard WAF classifies the traffic as malicious, prevents it and counts it from the license.</P><P>What tuning best practices do you recommend to reduce the amount of counted requests from our license?</P><P>Regards.</P> Tue, 22 Jul 2025 19:27:41 GMT Eve_Z 2025-07-22T19:27:41Z Tuning best practices for crawlers https://community.checkpoint.com/t5/WAF/Tuning-best-practices-for-crawlers/m-p/253699#M329 <P>Hello Community,</P><P>I am aware that CloudGuard WAF licenses are counted per number of HTTP/HTTPS requests. In some of our websites, most of the prevented traffic comes from GoogleBots IP addresses. These bots are crawlers that index the websites for search engines, but CloudGuard WAF classifies the traffic as malicious, prevents it and counts it from the license.</P><P>What tuning best practices do you recommend to reduce the amount of counted requests from our license?</P><P>Regards.</P> Tue, 22 Jul 2025 19:27:41 GMT https://community.checkpoint.com/t5/WAF/Tuning-best-practices-for-crawlers/m-p/253699#M329 Eve_Z 2025-07-22T19:27:41Z Re: Tuning best practices for crawlers https://community.checkpoint.com/t5/WAF/Tuning-best-practices-for-crawlers/m-p/254560#M330 <P><SPAN><A href="https://waf-doc.inext.checkpoint.com/concepts/security-practices" target="_self">WAF security-practices</A></SPAN><BR /><BR />try these crawler tuning tips:</P> <UL> <LI><U>whitelist known crawlers</U> <UL> <LI> <P>create custom rules to allow traffic from verified crawler addresses (<A href="https://udger.com/resources/ua-list/crawlers" target="_self">example list</A>)</P> </LI> </UL> </LI> <LI><U>tune bot classification features</U> in anti-bot protection to improve&nbsp;<SPAN>distinguish between good and malicious bots</SPAN></LI> <LI><U>adjust security practices</U> <UL> <LI><SPAN>a</SPAN><SPAN>ctivate <EM>web application protection</EM> and <EM>web API protection</EM> in detect/learn mode before switching to prevent mode, t</SPAN><SPAN>his allows the system to learn traffic patterns and reduce false positives</SPAN></LI> </UL> </LI> <LI><U>reduce inspection scope</U> <UL> <LI><SPAN>exclude s</SPAN><SPAN>tatic resources (images, css, .js) from inspection if they are frequently accessed by crawlers by&nbsp;</SPAN><SPAN>configuring URL patterns or content types to bypass WAF inspection</SPAN></LI> </UL> </LI> </UL> Tue, 05 Aug 2025 14:31:36 GMT https://community.checkpoint.com/t5/WAF/Tuning-best-practices-for-crawlers/m-p/254560#M330 Danny 2025-08-05T14:31:36Z