ActionandExpression Preview(http.request.uri.path eq "/wp-comments-post.php" and http.request.method eq "POST" and not http.referer contains "yoursite.com")FieldURI PathOperatorequalsTagsecurityagressiveValue/wp-comments-post.php
Block access to wp-comments.php