Block http requests under waf rule set

shoaib1 · January 22, 2025, 10:30pm

What is the name of the domain?

What is the error message?

0%

What is the issue you’re encountering

Can anyone tell me which value works best for the WAF rule to block http request for a specific country traffic.

What steps have you taken to resolve the issue?

i currently use value as “http://” but i couldn’t accomplish. i implemented : (http.request.uri.path contains “"http://"”)

fritex · January 22, 2025, 10:32pm

Would block anyone just typing your URL address in any Web browser. Have you got the HTTP to HTTPS redirection enabled as well? What’s the concern here or why you’d want to block HTTP?

If DNS record is proxied, you could achieve this by writing directly to an Expression builder where only port 443 is enabled, while requests to all the other compatible and supported with Cloudflare proxy would be presented with the default Cloudflare Block page:

(http.host contains "example.com" and not cf.edge.server_port in {443})

Make sure to replace the example.com with your own true domain name. Above Custom WAF rule would match even sub-domains such as www.example.com.

Helpful article:

Supported and compatible ports on a proxied DNS record:

system · February 6, 2025, 10:31pm

This topic was automatically closed after 15 days. New replies are no longer allowed.

Topic		Replies	Views
Cannot block ports with WAF rules Security	7	1314	June 26, 2023
Block ports with WAF rule Security	13	2206	August 29, 2023
WAF Custom Rules Not Working Security	6	53	March 8, 2025
Access Blocked After Configuring WAF and Firewall Rules on Cloudflare (Dummy Data) Security	2	154	June 12, 2024
Simple WAF Rule not working for root only for www Rules	5	1127	April 11, 2023