LogoLogo
  • ShieldsGuard - User Guide
  • Installation Steps
    • Shields Guard Installation
    • Shields Guard SEG Installation
  • Getting Started
    • 1. General Welcome and Site Management Panel
    • 2. Overview
      • 2.1 Today's Data
      • 2.2 Country Statistics
      • 2.3 URL Statistics
      • 2.4 IP Statistics
      • 2.5 HTTP Status Statistics
    • 3. Protection
      • 3.1 DDoS Protection
        • 3.1.1 Google Recaptcha Setup
        • 3.1.2 Friendly Captcha Setup
      • 3.2 WAF – Web Application Firewall
    • 4. Security Rules
      • 4.1 BlackList & WhiteList
      • 4.2 User Agent Filtering
      • 4.3 Query String Filtering
      • 4.4 HTTP Header Filtering
      • 4.5 Block POST Values
      • 4.6 Custom Headers
      • 4.7 Block URL Requests
      • 4.8 URL Path Blocking
      • 4.9 Encrypt Path
      • 4.10 Remove Request Value
      • 4.11 Exclude Directories from Protection
    • 5. Logs
      • 5.1 Access Log
      • 5.2 Security Log
    • 6. Asset Management
      • 6.1 Asset Management
      • 6.2 Network Topology
      • 6.3 Vulnerability Scan
    • 7. Access
  • 8. DNS
  • 9. SSL
  • 10. Subdomain Manage
  • 11. Edit Page
  • ShieldsGuard SEG
    • 1. SEG Dashboard
    • 2. Reporting
    • 3. Analyzed
      • 3.1 Files
      • 3.2 URL
      • 3.3 Mail
      • 3.4 Domain
    • 4. Mail Settings
      • 4.1 File
      • 4.2 Mail Body
      • 4.3 Sender Domain
Powered by GitBook
On this page
Export as PDF
  1. Getting Started
  2. 4. Security Rules

4.11 Exclude Directories from Protection

Previous4.10 Remove Request ValueNext5. Logs

Last updated 9 days ago

📘 Overview

The Exclude Directory from Protection module allows you to bypass all active ShieldsGuard security mechanisms (WAF, rate limiting, filtering, etc.) for a specific directory path.

This is useful for public, static, or third-party resources that may not function properly under strict protection.

🛠️ How It Works

You define:

  • Directory Path (e.g., /uploads, /public/images, https://yourdomain.com/assets/)

Once added, all requests to that path and its subpaths are excluded from protection and forwarded directly to your origin server.

⚙️ How to Add an Excluded Directory

  1. Navigate to Security Rules > Exclude Directory

  2. Click Specify Directory to Exclude from Protection

  3. Enter the full path of the directory

  4. Click Exclude from Protection

  5. All traffic to that directory will now bypass ShieldsGuard security logic

✅ Example Use Cases

  • Static file directories (JS, CSS, fonts, images)

  • File upload areas with large payloads

  • Public folders for client download access

⚠️ Important Notes

  • No security filtering will apply to excluded directories

  • Use only for safe, public, and static content

  • Avoid excluding sensitive areas such as /admin, /api, or dynamic logic handlers

🎯 This feature is designed for performance and compatibility — only use it where security impact is minimal.