Attempting to use Custom Rule to block Bytedance fails

snibbo71 · April 29, 2023, 9:16am

Hoping someone can enlighten me.

Every day my website is scraped by the same IP address with ASNUM 396986 - and IP address in the subnet 139.177.246.0. They appear to be a bot trying to scrape my content.

I’ve tried adding a custom rule to block the ASNUM, and I’ve added a source IP address of 139.177.246.0/24 to custom rules. I’ve tried adding the same to the IP Access rules. None of it works - the address still gets through to my site.

Other custom rules get blocked by ASNUM and/or IP Access rules (I use fail2ban to protect wp-login.php and xmlrpc.php).

Can anyone shed any light on what I’m doing wrong, or does CF have a global accept policy for Bytedance (i.e. TikTok).

Cheers,
Steve

epic.network · April 29, 2023, 7:56pm

Have you firewalled direct access to your host?

system · November 30, 2023, 10:41pm

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Bot Fight Mode - Allow certain ... to get through? Security	6	1694	June 5, 2022
Super Bot Fight Mode - What to know Tutorial Tutorials	1	6018	May 2, 2022
[WAF} Does'nt work as expected (Rulesets) Security	2	764	May 15, 2023
Super Bot Fight Mode Critical issue with paiement webstore Security	6	1858	May 4, 2022
Help hacker is bypassing my ip rules and my waf tools rules how to block it? Website, Application, Performance	8	69	January 28, 2025

Attempting to use Custom Rule to block Bytedance fails

Related topics