Allow firewall rules to pattern match more headers

I think that it would be a great addition if we were able to pattern match more features than the ones we have in the current firewall panel. Many DDoS attacks forget to forge those and either set invalid/unlikely values or miss them.
Example:
Accept
Accept-Encoding
Accept-Language

Can’t you check for “” in those headers already? Though I don’t know if that will work if there’s an absence of a header.

https://developers.cloudflare.com/firewall/cf-firewall-language/fields#http-header-fields

1 Like

Gonna be honest and say that I was purely checking the firewall rules page where the documentation is not as extended.
After a quick look, it seems like we are in fact able to do what I was mentioning, unsure about what happens if the header is not present though. :thinking:

1 Like