Troubleshooting
Common issues and solutions for Atomic Edge WAF configuration.
Site Not Loading
Symptoms
- Site returns "Connection refused" or "Site can’t be reached"
- Blank page or timeout errors
Possible Causes & Solutions
1. DNS not configured correctly
- Verify your domain’s A record points to Atomic Edge’s IP
- Use
nslookup yourdomain.comto check DNS - Wait 5-60 minutes for DNS propagation
2. Backend IP incorrect
- Check the Backend IP in General settings
- Verify your web server is running:
curl http://your-backend-ip - Ensure the IP is accessible from Atomic Edge
3. Site disabled
- Check if "Active" toggle is enabled in General settings
- Re-enable the site if it was disabled
4. Firewall blocking Atomic Edge
- Whitelist Atomic Edge’s IPs in your server firewall
- Check your hosting provider’s firewall settings
SSL/HTTPS Errors
Symptoms
- "Your connection is not private" warnings
- SSL certificate errors
- Mixed content warnings
Possible Causes & Solutions
1. Backend SSL misconfigured
- If your backend uses HTTPS, enable "Backend SSL" in General settings
- If using self-signed certificate, disable "SSL Verification" (not recommended for production)
2. Certificate mismatch
- Ensure your backend server has a valid SSL certificate
- Certificate must match your domain name
3. Mixed content
- Check your site for hardcoded HTTP:// links
- Use relative URLs or HTTPS:// for all resources
Legitimate Traffic Being Blocked
Symptoms
- Users report "Access Denied" or 403 errors
- Your own IP is blocked
- Legitimate requests in WAF logs
Possible Causes & Solutions
1. WAF false positive
- Check WAF logs to identify the triggering rule
- Add the rule ID to "Disabled Rules" in WAF settings
- Example:
913100,920100
2. IP blacklisted
- Check IP Blacklist in Access Control
- Remove the IP if it was added by mistake
3. Geographic blocking
- Check if the user’s country is blocked
- Adjust geographic restrictions if needed
4. Rate limiting too strict
- Increase "Events Per Minute" in Rate Limiting
- Enable "Whitelist Bypass" for your own IPs
5. Page Protection blocking
- Check Page Protection rules
- Verify the IP is in the whitelist for that URI
- Enable "Inherit Global Whitelist"
Performance Issues
Symptoms
- Site loading slowly
- Timeouts
- High latency
Possible Causes & Solutions
1. Backend server slow
- Atomic Edge adds minimal latency (~5-20ms)
- Check your backend server performance
- Use
curl -w "@curl-format.txt" https://yoursite.comto measure timing
2. Rate limiting interfering
- Check if legitimate traffic is being rate limited
- Increase rate limit threshold
- Enable whitelist bypass
3. WAF processing overhead
- WAF adds ~10-30ms per request
- This is normal and necessary for security
- If critical, disable specific heavy rulesets
4. Geographic distance
- Latency increases with distance to Atomic Edge servers
- Contact support about edge locations
WAF Not Blocking Attacks
Symptoms
- Known attacks getting through
- No entries in WAF logs
- Site still vulnerable
Possible Causes & Solutions
1. WAF not enabled
- Check that WAF toggle is enabled
- Verify rule groups are selected
2. Rules disabled
- Check "Disabled Rules" field
- Remove rule IDs if they were disabled by mistake
3. IP whitelisted
- Whitelisted IPs bypass WAF
- Check if attacker IP is in whitelist
4. DNS not configured
- Traffic not flowing through Atomic Edge
- Verify DNS points to Atomic Edge
5. Attack type not covered
- Some attacks may not be detected by current rulesets
- Contact support to add custom rules
Bot Blocking Not Working
Symptoms
- AI bots still accessing site
- No blocked bot entries in logs
Possible Causes & Solutions
1. Bot blocking not enabled
- Check that "Enable Bot Blocking" toggle is on
- Verify bot providers are selected
2. Bot using unknown IPs
- Some bots may use undisclosed IP ranges
- IP lists are updated daily but may not be complete
3. Bot IP whitelisted
- Check if bot IP is in global whitelist
- Remove if added by mistake
4. DNS not configured
- Traffic not flowing through Atomic Edge
- Verify DNS configuration
Rate Limiting Not Working
Symptoms
- No 429 errors in logs
- Abuse continuing despite rate limits
Possible Causes & Solutions
1. Rate limiting not enabled
- Check that rate limiting is configured
- Verify "Events Per Minute" is set
2. Whitelist bypass enabled
- Whitelisted IPs bypass rate limiting
- Check if abuser IP is whitelisted
3. Distributed attack
- Attacker using many different IPs
- Consider geographic blocking or IP blacklist
4. Rate limit too high
- Lower "Events Per Minute" threshold
- Monitor logs to find appropriate limit
Logs Not Appearing
Symptoms
- Empty log tables
- No traffic statistics
- Missing WAF events
Possible Causes & Solutions
1. DNS not configured
- Traffic not flowing through Atomic Edge
- Verify DNS points to Atomic Edge
2. Site disabled
- Check if "Active" toggle is enabled
- Re-enable the site
3. Log processing delay
- Logs may take 1-5 minutes to appear
- Wait and refresh the page
4. Date filter too narrow
- Check date range filter
- Expand to "Last 7 Days" or "All Time"
Getting Help
If you’ve tried these solutions and still have issues:
- Check the Status Page: status.atomicedge.io
- Review Documentation: Browse other help topics in this section
- Contact Support:
- Email: support@atomicedge.io
- Include: Site URL, description of issue, relevant log entries
- Attach: Screenshots if applicable
Information to Include
When contacting support, please provide:
- Site URL: The domain experiencing issues
- Issue Description: What’s happening vs. what you expect
- Steps to Reproduce: How to trigger the issue
- Logs: Relevant entries from WAF or Access logs
- Configuration: Settings you’ve tried
- Timeline: When the issue started
Diagnostic Commands
Useful commands for troubleshooting:
Check DNS
nslookup yourdomain.com
dig yourdomain.comTest Backend Server
curl -I http://your-backend-ip
curl -I https://your-backend-ipTest Through Atomic Edge
curl -I https://yourdomain.com
curl -v https://yourdomain.comCheck SSL Certificate
openssl s_client -connect yourdomain.com:443 -servername yourdomain.comTest Rate Limiting
for i in {1..70}; do curl -I https://yourdomain.com; doneTest WAF
curl "https://yourdomain.com/?id=1' OR '1'='1"Maintenance Windows
If you need to perform maintenance:
- Disable Site: Turn off "Active" toggle
- Perform Maintenance: Update your backend server
- Test Backend: Verify everything works
- Re-enable Site: Turn on "Active" toggle
- Monitor Logs: Check for any issues
Important: Disabling a site stops all traffic routing. Visitors will not be able to access your site through Atomic Edge.
Frequently Asked Questions
My site isn't loading after adding it to Atomic Edge
Diagnosing connection and DNS issuesCheck: 1) DNS A record points to Atomic Edge’s IP (use nslookup). 2) Backend IP is correct in General settings. 3) Site is enabled (Active toggle). 4) Your server firewall allows Atomic Edge IPs. Wait 5-60 minutes for DNS propagation if recently changed.
I'm getting SSL certificate errors
Resolving HTTPS configuration issuesCommon causes: Backend SSL misconfigured (enable ‘Backend SSL’ in settings if your origin uses HTTPS), certificate doesn’t match domain, or mixed content (hardcoded http:// links). For self-signed certs, disable SSL Verification (not recommended for production).
Legitimate traffic is being blocked by the WAF
Handling WAF false positivesCheck WAF logs to identify the triggering rule ID. Add the rule to ‘Disabled Rules’ in WAF settings (comma-separated, e.g., 913100,920100). Also check: Is the IP blacklisted? Is their country blocked? Is rate limiting too strict? Are Page Protection rules conflicting?
How do I whitelist my own IP?
Preventing self-blockingGo to Access Control, add your IP to the whitelist. Include: your home IP, office IP, VPN IPs, and monitoring service IPs. Format: single IPs or CIDR notation. Always whitelist BEFORE enabling strict security rules to avoid lockout.
My site is loading slowly through Atomic Edge
Diagnosing performance issuesAtomic Edge adds ~5-20ms latency. If much slower: 1) Check backend server performance. 2) Verify rate limiting isn’t hitting legitimate traffic. 3) WAF processing adds ~10-30ms (normal). 4) Geographic distance affects latency. Use ‘curl -w’ timing to measure each segment.
Attacks are getting through despite WAF being enabled
Troubleshooting ineffective WAF protectionVerify: 1) WAF toggle is enabled. 2) Appropriate rule groups are selected. 3) No critical rules are disabled. 4) Attacker IP isn’t whitelisted. 5) DNS actually points to Atomic Edge (not direct to origin). 6) Attack type is covered by selected rulesets.
AI bots are still crawling my site despite bot blocking
Troubleshooting bot protectionCheck: 1) Bot blocking is enabled. 2) Specific providers are selected. 3) DNS points to Atomic Edge. 4) Bots may use undisclosed IP ranges. If legitimate service blocked incorrectly, add to whitelist. Some bots may disguise their User-Agent.
Geographic blocking isn't working
Diagnosing geo-blocking issuesVerify: 1) Geographic blocking is enabled. 2) Countries are selected in the list. 3) Mode is correct (whitelist vs blacklist). Note: VPN users bypass geo-blocking. IP geolocation is ~95% accurate. Mobile users may appear in unexpected locations.
I'm locked out of my own admin area
Recovering admin accessIf you’ve locked yourself out with Page Protection Rules: Contact Atomic Edge support to temporarily disable access control. Prevention: Always whitelist your IP first, test rules from a non-whitelisted IP, and keep a backup access method (VPN with whitelisted IP).
My API key isn't working
Troubleshooting API authenticationCheck: 1) Key is copied exactly (no spaces). 2) Using X-Atomic Edge-Key header (not Authorization). 3) Key hasn’t been revoked/regenerated. 4) Site is active and not deleted. If lost, generate a new key (invalidates the old one). Test with the /connect endpoint.
How do I contact Atomic Edge support?
Getting help with issuesFor urgent issues (site down, locked out): Email support@atomicedge.io with your domain and description. For general questions: Use the Help section in your dashboard. Include: domain name, error messages, screenshots, and steps to reproduce the issue.