SleekView for miniOrange WAF: blocked request & rule tables
miniOrange Web Application Firewall logs every blocked request, matched rule, and IP block to its own wp_mo_waf_* tables. SleekView reads them as one queryable workspace, so traffic triage stops being a scrollable log.
♾️ Lifetime License available
Triage blocked traffic without scrolling the WAF log
miniOrange WAF records every request the firewall acts on in its own tables: blocked and throttled requests in wp_mo_waf_request_logs, IP block list state in wp_mo_waf_blocked_ips (or via wp_options on the free tier), and configuration in wp_options under mo_waf_ keys. The default admin renders the request log as a long scrolling list, with rule filters on a separate page and limited combined search.
SleekView reads each source as a first-class table. Sort blocked requests by country, matched rule, or URL. Filter to repeat offenders that hit /wp-login.php in the last hour. Combine country, rule, and HTTP method in one filter set instead of clicking through chips. Inline ban and unban actions route through miniOrange WAF's own functions, so changes appear in the plugin's own block list and audit trail.
The WAF keeps doing its filtering exactly as before, blocking and throttling at the same layer. SleekView only changes the read side: saved views like Today's blocked logins or Throttled bot traffic from outside the EU, scoped per role so support staff can triage without access to firewall configuration.
Workflow
From a scrolling WAF log to a sortable triage queue
Connect the WAF tables
wp_mo_waf_request_logs and wp_mo_waf_blocked_ips as sources, with IP, country, rule, action, and timestamp pre-mapped to filterable columns.
Build the blocked view
Scope per role
Act inline
Sample columns
A typical miniOrange WAF request view
wp_mo_waf_request_logs + wp_mo_waf_blocked_ips + wp_options (mo_waf_*)
| IP | Country | URL | Rule | Action | Time |
|---|---|---|---|---|---|
| 203.0.113.21 | RU | /wp-login.php | Brute force | Blocked | 45s ago |
| 198.51.100.11 | CN | /xmlrpc.php | XML-RPC abuse | Blocked | 9m ago |
| 192.0.2.55 | US | /wp-admin/admin-ajax.php | SQLi pattern | Throttled | 32m ago |
| 203.0.113.7 | BR | /?author=1 | Author scan | Throttled | 1h ago |
Comparison
Default miniOrange WAF admin vs SleekView
Default miniOrange WAF
-
Request log in
wp_mo_waf_request_logsrenders as a scrollable list - Block list and request log live on separate screens with no join
- Hard to combine country, rule, and URL filters into a single view
- No saved views for things like 'Today's blocked logins' across the team
- Bulk banning or releasing IPs requires row-by-row navigation
SleekView
-
Reads
wp_mo_waf_request_logsandwp_mo_waf_blocked_ipstogether -
Sort blocked traffic by country, IP, or matched rule in
wp_mo_waf_request_logs - Inline ban or unban via miniOrange WAF's own functions
- Filter to repeat offenders or login URLs only in seconds
- Save shared views like 'Throttled bots from outside the EU' for the team
Features
What SleekView gives you for miniOrange WAF
Request log as a real table
wp_mo_waf_request_logs becomes sortable by country, rule, action, and timestamp. No more scrolling a flat log to spot a pattern.
Filter by country plus rule
Combine country, matched rule, HTTP method, and URL in one filter set. Cut thousands of blocked entries to the handful that need attention.
Ban and unban inline
Add an IP to wp_mo_waf_blocked_ips or release a customer from a row. Writes go through miniOrange WAF's own functions and appear in the plugin's UI.
Audience
Who uses SleekView for miniOrange WAF
Security admins
Triage wp_mo_waf_request_logs by rule and country in one view. Group by IP, spot brute force campaigns, and ban offenders inline.
Support staff
Verify whether a customer's IP was caught by the WAF, release the block inline if legitimate, and confirm the change in wp_mo_waf_blocked_ips without leaving the table.
Incident responders
Sort blocked requests by time and rule, reconstruct an attack timeline, and export the slice to CSV for the post-mortem write-up.
The bigger picture
Why a WAF needs a queryable read layer
A WAF that's working blocks thousands of requests a day, and the value of that data drops fast if you can't read it. miniOrange WAF does the filtering right, with every request action recorded in wp_mo_waf_request_logs and active blocks in wp_mo_waf_blocked_ips. The plugin's default admin renders the log as a scrollable list, which is fine for a glance but slow once a small attack pattern starts forming under the noise.
The moment a question is 'which IPs from this country triggered the brute force rule on the login URL in the last hour', you're either piecing it together by clicking through filters or writing direct SQL. SleekView turns the same data into a real triage table with combined filters and saved views. Support staff get a read-only slice for handling customer IP releases, while security leads get the full triage queue with ban and unban actions wired through miniOrange WAF's own functions.
The firewall keeps blocking exactly as before; SleekView just makes the audit trail and active block list a working surface instead of a log file.
Questions
Common questions about SleekView for miniOrange WAF
Yes. The wp_mo_waf_request_logs table and the block list (either as a table or as an option row, depending on tier) exist in the free version, and SleekView reads them directly. Premium-only features stay enforced by the WAF itself.
Yes. SleekView calls miniOrange WAF's own ban action from a row, so the IP is added to wp_mo_waf_blocked_ips the same way it would be from the plugin's own admin. The block reason and timestamp are preserved.
No. SleekView reads from existing tables and paginates against the same indexes the WAF uses. The filtering layer in the WAF continues to run unchanged.
Yes. Country, matched rule, action, and URL are all first-class filterable columns on the wp_mo_waf_request_logs source, so combining them is a single filter operation.
Yes. Any filtered view exports to CSV from the table header, with IP, country, rule, action, and timestamp preserved for incident reports.
Yes. Saved views can be assigned per role, so support staff get a triage-only view of blocked requests and customer IP releases, while WAF configuration stays restricted to administrators.
Yes. wp_mo_waf_blocked_ips (or the equivalent option row on the free tier) is exposed as its own source so the active block list is visible and editable in the same way as request logs.
Yes. miniOrange WAF respects network scope, and SleekView reads the active scope. A network admin can view all subsites from one table; a subsite admin sees only their own request logs.
Pricing
More than 1000+
happy customers
Explore our flexible licensing options tailored to your needs. Upgrade your license anytime to access more features, or opt for a lifetime license for ongoing value, including lifetime updates and lifetime support. Our hassle-free upgrade process ensures that our platform can grow with you, starting from whichever plan you choose.
Lifetime ♾️
Most popular
EUR
once
- Unlimited websites
- Lifetime updates
- Lifetime support
...or get the Bundle Deal
and save €250 🎁
The Bundle (unlimited sites)
Pay once, own it forever
Elevate your WordPress site with our exclusive plugin bundle that includes all of our premium plugins in one package. Enjoy lifetime updates and lifetime support. Save significantly compared to buying plugins individually.
What’s included
-
SleekAI
-
SleekByte
-
SleekMotion
-
SleekPixel
-
SleekRank
-
SleekView
€749
Continue to checkoutBrowse more
- Yith Woocommerce Color And Label Variations
- Woocommerce Product Recommendations
- Woocommerce Stamps
- Solid Affiliate
- Sprout Invoices
- Yith Essential Kit
- Surecart
- Woocommerce Store Credit
- Woocommerce Etsy Integration
- Advanced Coupons
- Woocommerce Shipping Class Rates
- Woocommerce Realex
- Woocommerce Product Filter
- Aelia Currencyswitcher
- Woocommerce Product Table