Blocking Time Configuration—Added flexibility to configure Activity Tracking with or without blocking periods. When enabled, the offending source/actor is blocked upon exceeding the defined rate limit per second/minute/hour/day. When disabled, the actor is blocked for the remaining time within the rate limit window.

Rate Sync Frequency—Introduced a synchronization frequency setting to optimize request rate management. Lower frequencies ensure less frequent synchronization with the upstream cache, improving application performance under high request volumes.

Report Mode (First Option)—Added a new report mode option, First, to mitigate overwhelming security event notifications during high-volume L7 DDoS attacks. This mode reports only the initial event at the onset of an attack, reducing user fatigue.

Actor Inclusion—Enabled the inclusion of actors in source groups for request classification and enhanced protections based on actor values. Requests are classified based on extracted actor values and compared against specified source group values.

Custom Filtering—Enhanced filtering capability with custom filtering options, allowing users to define queries using both AND and OR operators simultaneously for better event identification.

Parameter Type—Added Parameter Type to security event details when the Zone is set to Parameters. This provides additional information on the location of the violated parameter in the request, including Query, Body, Cookie, Filename, and Path.

RFC Validation Protection—Implemented RFC validation protection in security inspection latency control for finer control over latency, ensuring robust security measures without sacrificing performance.