Adding rules

When adding a rule, I have the option for allow, deny, anti-bot and auth. The first two options are clear to me, but when do the other two trigger?
Does the Anti-Bot only triggers, when the domain has Anti-Bot enabled? Or does it always trigger the Anti-Bot feature, even if the website hasn't enabled the feature, and checks against bot rules?

Same with auth? Does it always triggers the authentication, when the rule matches, or only, if authentication is enabled for the domain?

OK, got it. Adding a rule as Anti-Bot or Auth, I can force requests to those feature. Very nice.