Blocked Non US And Canadian Traffic in WAF Not Working

What is the name of the domain?

private

What is the issue you’re encountering

I set up in Security > WAF a simple rule. Count is not in Canada or US to block. However, I still see IPs in the logs of users who are outside this geographical region. This is an example: https://whatismyipaddress.com/ip/116.212.156.197

What is the current SSL/TLS setting?

Full

Here is an image of the rule:

You haven’t given the domain so I can’t check, but usual reasons are:

  • domain isn’t active on Cloudflare
  • DNS records are not proxied and instead are set to “DNS only”
  • you are using a host that also uses Cloudflare (so requests go direct to their account and not through yours) and you need to use only proxied CNAMEs to point at them, see…
1 Like

DNS is proxied, might need to look at proxied CNAMES, thank you for the link. One additional piece of info is that the WAF is working for some addresses so wondering why these others aren’t being caught:

Hello,

To further investigate, could you provide me your domain ?

Thank you !

nailflippers.com

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.