diff --git a/conf.d/ferreirareal.com.br.conf b/conf.d/ferreirareal.com.br.conf
index 45b640b..517f801 100644
--- a/conf.d/ferreirareal.com.br.conf
+++ b/conf.d/ferreirareal.com.br.conf
@@ -48,6 +48,7 @@ server {
     include snippets/proxy_params.conf;
     include snippets/modsecurity.conf;
     include snippets/well_known.conf;
+    include snippets/security_actions.conf;
     
     # --- Certificados ---
     ssl_certificate /etc/letsencrypt/live/ferreirareal.com.br/fullchain.pem;
diff --git a/snippets/security_actions.conf b/snippets/security_actions.conf
new file mode 100644
index 0000000..9805e05
--- /dev/null
+++ b/snippets/security_actions.conf
@@ -0,0 +1,5 @@
+# Security Actions
+# Bloqueio imediato baseado no security_maps.conf
+if ($block_request) {
+    return 444; # Fecha a conexão sem resposta (mais agressivo) ou 403/404
+}