Block all IPs from Hanoi

I am not aware if that is possible with Firewall Rules, however you could try using a Transform Rule to catch the ip.src.city from the request then rewrite it to some unknown path like /bad-ip/, therefore following this by either a Firewall Rule if http.request.uri.path contains /bad-ip/ with the action “Block” to present the “1020 Access Denied” page.

Reference:

Kindly and patiently wait for another reply as maybe someone else might got a different idea and better approach for this so far, otherwise you’d have to use a higher paid plan for some kind of features which require Business or Enterprise which could work with cf.city I think and with Cloudflare Workers script :thinking:

Nevertheless, you could also check your Firewall Events and do a lookup for those IP’s (with online tool like ipinfo.io) and block the whole ASN using Security → WAF → Tools → IP Access Rules.

3 Likes