Setting Up the AI Bot Blocker

Enable AI Bot Blocker

The AI Bot Blocker protects your services from unwanted AI crawlers like GPTBot, Google Gemini, DeepSeek, and others. Here is how to set it up:

Step 1: Edit Route

Open the route you want to protect and switch to the Security tab.

Step 2: Enable Bot Blocker

Toggle on the AI Bot Blocker.

Step 3: Choose Mode

• Block (403) — Recommended. Returns HTTP 403.
• Tarpit — Responds extremely slowly, wastes crawler resources.
• Drop — Drops the connection immediately. Most aggressive.
• Garbage — Sends random data. Poisons training data.
• Redirect — Redirects to a URL (e.g. an info page).
• Custom — Custom message with any status code.

Step 4: Save

Save the route. The Bot Blocker is immediately inserted as the first handler in the route chain.

Verify it works

After enabling, you will see an orange badge in the route list with the number of blocked requests (e.g. 🤖 42). The counter updates every 60 seconds.

Which bots are detected?

The blocker detects access from: OpenAI, AWS, Google Cloud, GitHub Copilot, DeepSeek, and Microsoft Azure — based on their known IP address ranges.

Good to know

• Works only on HTTP routes (not L4/TCP)
• Detection is IP-based, not User-Agent-based
• The counter counts all 403 responses, not just bot blocks