diff --git a/internal/nodes/waf_manager.go b/internal/nodes/waf_manager.go
index 4ca3943..513fff2 100644
--- a/internal/nodes/waf_manager.go
+++ b/internal/nodes/waf_manager.go
@@ -57,6 +57,9 @@ func (this *WAFManager) convertWAF(policy *firewallconfigs.HTTPFirewallPolicy) (
 	if policy == nil {
 		return nil, errors.New("policy should not be nil")
 	}
+	if len(policy.Mode) == 0 {
+		policy.Mode = firewallconfigs.FirewallModeDefend
+	}
 	w := &waf.WAF{
 		Id:   strconv.FormatInt(policy.Id, 10),
 		IsOn: policy.IsOn,
diff --git a/internal/waf/rule_set.go b/internal/waf/rule_set.go
index cfb6286..b6ac650 100644
--- a/internal/waf/rule_set.go
+++ b/internal/waf/rule_set.go
@@ -118,7 +118,7 @@ func (this *RuleSet) ActionCodes() []string {
 }
 
 func (this *RuleSet) PerformActions(waf *WAF, group *RuleGroup, req requests.Request, writer http.ResponseWriter) bool {
-	if waf.Mode != firewallconfigs.FirewallModeDefend {
+	if len(waf.Mode) != 0 && waf.Mode != firewallconfigs.FirewallModeDefend {
 		return true
 	}