> For the complete documentation index, see [llms.txt](https://clients.medianova.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://clients.medianova.com/products/security/user-agent-acl.md).

# User Agent ACL

User Agent ACL allows you to control access to content by evaluating the User-Agent header of incoming requests.

You can create whitelist or blacklist rules using full or partial User-Agent values to allow or deny access for specific browsers, applications, crawlers, or automated clients.

### Configure User Agent ACL

#### Enable the Feature

Turn **Status** to **On**.

<figure><img src="/files/jdRwTByL3pvRJDEyEpe3" alt=""><figcaption></figcaption></figure>

#### Select the Rule Mode

Choose one of the following modes:

* **Whitelist** — Only matching User-Agent values are allowed.
* **Blacklist** — Matching User-Agent values are blocked.

#### Select the Match Type

Choose how User-Agent values should be evaluated:

* **Contains** — Matches any User-Agent containing the specified value.
* **Exact Match** — Requires the entire User-Agent value to match exactly.

#### Add User-Agent Rules

Enter the User-Agent value and click **+** to add the rule.

#### Save the Configuration

Click **Submit** to apply the changes.

### How It Works

The CDN evaluates the User-Agent request header against the configured rules.

Depending on the selected mode:

* Matching requests may be allowed.
* Matching requests may be blocked.

Requests that do not match the configured rules follow the behavior defined by the selected whitelist or blacklist mode.

### Common Use Cases

* Block known crawlers or scraping tools
* Restrict access to specific client applications
* Allow access only to approved applications
* Filter unwanted automated traffic

### Important Notes

* User-Agent values are supplied by the client and can be modified or spoofed.
* User Agent ACL should not be used as the sole security mechanism for protecting sensitive content.
* Consider combining User Agent ACL with Rate Limiting, WAF, Security Token, or IP Restriction for stronger protection.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://clients.medianova.com/products/security/user-agent-acl.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.