Our SmartWAF is a convenient web application firewall that you can enable per every CDN Resource with a single click in your Control Panel. It is a strong, yet easy to use feature for any web application.

CDN77 is using the OWASP Core Rule Set (CRS), which is designed to deflect the most common vulnerabilities, including the OWASP Top 10, such as:

  • SQL Injection (SQLi)
  • Cross-Site Scripting (XSS)
  • Local File Inclusion (LFI)
  • Remote File Inclusion (RFI)
  • PHP Code Injection
  • Java Code Injection
  • HTTPoxy
  • Shellshock
  • Unix/Windows Shell Injection
  • Session Fixation
  • Scripting/Scanner/Bot Detection
  • Metadata/Error Leakages

The modified version ensures a low number of false alerts to recognise real attacks.

If you are interested in setting up custom rules, exceptions, or heuristic-based approaches, let us know via or email at

Related guides:

SSL & TLSEnable SSL/TLS certificates for your CDN Resource or CNAMEHotlink protectionLock your content and allow access from specified domains onlySecure tokenInformation about tokens and how to use themIP protectionAllow / Block specific IP address or IP range per CDN ResourceGeo protectionAllow or Block specific countries per CDN ResourceOrigin protectionConfigure Origin Protection (proxy) between CDN and Origin