Allow IPs not working

There all,
Kindly assist, I have placed most countries on Firewall Challenge, this has stopped must applications like gtmatrix, orion, muwpdev smush cdn. Now, I got their server IP addresses, and allowed them on the firewall rule, no success. I also whitelisted them on the Firewall->Tools still no success.
How do I allow these applications pls?

Have you tried putting those IP addresses in the same Firewall Rule to see if that fixes it?

Also, double-check the Firewall Event Log to see why those are getting blocked. It will most likely say “Firewall Rule” and the IP address of what got blocked.

Yes, I have the IP addresses in hte Firewall Rule.
I have double checked, but I cannot find the IPs on the event log.

Do you have any similar configuration I can look at?

(not ip.src in { 2400:cb00::/32 2405:b500::/32 2606:4700::/32 2803:f800::/32 2c0f:f248::/32 2a06:98c0::/29} and ne "DE")

Action here is block
In words: all listed IPs are allowed + all users from Germany. Don’t forget to allow Cloudflare AlwaysOnline If you’re using it.

1 Like

Thank MVP, below is my Firewall rule to allow Smush CDN Server IPs:

(ip.src eq and ip.src eq and ip.src eq and ip.src eq and ip.src eq and ip.src eq and ip.src eq and ip.src eq

Be so kind to assist in rewriting the right rule for me, including the “allow Cloudflare AlwaysOnline”

Hello MVP,
I mirrored your firewall configuration to permit Gtmtrix and smush CDN server, but not success. See config below.
(not ip.src in {} and ne “NG”)

What could be wrong?

Keep in mind that my example is negated. "If IP is not x y z and country does not equal DE then block all traffic.

What I understood is that you want to challenge almost everyone except the given IPs and NG. Set your rule to ‘challenge’ instead of ‘allow’

This topic was automatically closed after 30 days. New replies are no longer allowed.