I’ve noticed that on certain days of the week, usually at 2 to 3 am in the morning local time, a concerted attempt is made to disable my server with thousands of requests from a certain country in Europe.
Oddly, there are very few details collected by Cloudflare – information about operating system or browser is always “unknown.” Nor is there an IP address identified from where the traffic originates. The visits are always direct to my website, that is, they do not arrive via a google search, for example. The URLs visited are root, and a handful of specific paths pointing to certain pages.
Short of blocking the entire country, what are my options in addressing this? Thank you.