Bot fight mode blocking all Mobile network?

I have tried the setup below here


and tried the access on my mobile but it’s blocking me even tho I’m not a BOT???

Why is the mobile network in the UK blocked?

FULL list of UK ASN

Is there a way to add all ASN numbers rather than one by one

(http.user_agent contains "bot" and http.user_agent contains "Bot" and http.user_agent contains "spider" and not cf.client.bot) or (not http.user_agent contains "Googlebot" and not http.user_agent contains "bingbot" and not http.user_agent contains "Slurp" and not http.user_agent contains "DuckDuckBot" and not ip.geoip.asnum in {35228 2856 
5089 5607 
786 
12576 
13285 
9105 
6871 
5378 
8220 
9009 
4589 
8426 
206509 
61317 
5413 
13037 
5400 
5503 
206067 
31655 
15830 
20860 
30844 
15395 
8468 
25180 
12708 
12390 
3300 
41012 
25310 
9142 
8607 
35228 
42689 
13213 
8851 
12703 
5587 
15404 
20712 
25160 
198864 
47474 
201838 
8698 
15914 
3223 
6908 
44574 
8586 
24867 
42973 
15533 
56478 
62240 
30969 
48945 
60187 
29550 
41230 
212238 
42831 
56329 
16082 
25369 
25577 
61323 
2818 
24775 
42579 
7 
8681 
21188 
12701 
30740 
39356 
201773 
21054 
39550 
209237 
39400 
211077 
43383 
202575 
21296 
15601 
8651 
21433 
60068 
31727 
20952 
31708 
39545 
8680 
51561 
9002 
35425 
35575 
8419 
13122 
29017 
51043 
49572 
44444 
8622 
41095 
47622 
32708 
33920 
34920 
8844 
21267 
31463 
39326 
61231 
6660 
5555 
29009 
207995 
48024 
8613 
51704 
25135 
49425 
51320 
34010 
25343 
34914 
15412 
35456 
39458 
60257 
29676 
202596 
13009 
51551 
39477 
12519 
15570 
41354 
5631 
24916 
41811 
9153 
51490 
51059 
8435 
201106 
212465 
5552 
49758 
44981 
49158 
50957 
42081 
206092 
41678 
13126 
39537 
8530 
16353 
4455 
202818 
30914 
24958 
205544 
43949 
21371 
199335 
47264 
199055 
56595 
34555 
48101 
39921 
29297 
15463 
21396 
12496 
5500 
43531 
34790 
207427 
56460 
25098 
49765 
15641 
57356 
60426 
49999 
51918 
13205 
6717 
43207 
39116 
60819 
42228 
208687 
43915 
51048 
29129 
60377 
8689 
44022 
61124 
31515 
29611 
211307 
42705 
15654 
58273 
204222 
16334 
5564 
12488 
30967 
41107 
8902 
8553 
29180 
58349 
34282 
211585 
20799 
8943 
34695 
58305 
50292 
43599 
3213 
207907 
198781 
43545 
198736 
48294 
60610 
45014 
29527 
30827 
201471 
50173 
29668 
30938 
61215 
34660 
20915 
15917 
35826 
21099 
42633 
205072 
3170 
198440 
33941 
60672 
196744 
50300 
8916 
206150 
31472 
31084 
199883 
48273 
24778 
12775 
16050 
6894 
34442 
25376 
42004 
200994 
60788 
47143 
25460 
42010 
2129 
48620 
201508 
33953 
31641 
51263 
57276 
34119 
198220 
41695 
35433 
34066 
31742 
29457 
205917 
15753 
199909 
31595 
21439 
212655 
5586 
59395 
61337 
199713 
57624 
39097 
39522 
31273 
210874 
8282 
41357 
201971 
28757 
44931 
29646 
208189 

})

Blocking all bots part from mobile and broadband users in the UK?
will this rule work?
UK website only so UK customers only?

That’s not bot fight mode, that’s a firewall rule you appear to have created which is being triggered. The regex of the rule looks bad, not sure why it fires on anything but isn’t doing anything useful as written I don’t think.

1 Like

Your firewall is blocking you correctly - the second expression says that your user agent should not contain “GoogleBot” and not contain “bingbot” and should not contain “Slurp” and should not contain “DuckDuckBot” - which it doesnt, so you get blocked

You need to look at your logic and use “OR” instead of “AND” as no user agent will contain all 4 words

I’m UK and a couple of other countries only - turn your logic around and make an allow rule of something along the lines of
(Country is GB
or
Country is US and cf.client.bot) Which allows GB & known US bots, and then tweak from there

You will probably want to add TOR, country T1, and all Microsoft & Amazon ASN’s to a blocked list and probably also the VPN providers such as DigitalOcean & OVH which will block a lot of attackers from within GB

2 Likes

is this ok now

(http.user_agent contains “bot” and http.user_agent contains “Bot” and http.user_agent contains “spider” and not cf.client.bot) and not (not http.user_agent contains “Googlebot” and not http.user_agent contains “bingbot” and not http.user_agent contains “Slurp” and not http.user_agent contains “DuckDuckBot” and not ip.geoip.asnum in {35228 2856 5089 5607 786 12576 13285 9105 6871 5378 8220 4589 8426 206509 5413 13037 5400 5503 206067 31655 15830 30844 8468 25180 12708 12390 3300 41012 25310 9142 8607 35228 42689 8851 12703 5587 15404 20712 25160 198864 47474 201838 8698 15914 6908 44574 8586 24867 42973 15533 56478 30969 48945 60187 41230 212238 42831 56329 16082 25577 61323 2818 24775 42579 7 8681 21188 12701 30740 39356 201773 21054 39550 209237 39400 211077 43383 202575 21296 15601 8651 21433 31727 20952 31708 39545 8680 51561 9002 35425 35575 8419 13122 29017 51043 49572 44444 8622 41095 47622 32708 33920 34920 8844 21267 31463 61231 6660 5555 29009 207995 48024 8613 51704 25135 49425 51320 34010 25343 34914 15412 35456 39458 60257 29676 202596 13009 51551 39477 12519 15570 41354 5631 24916 41811 9153 51490 51059 8435 201106 212465 5552 49758 44981 49158 50957 42081 206092 41678 13126 39537 8530 16353 4455 202818 30914 24958 205544 43949 21371 199335 47264 199055 56595 34555 48101 39921 29297 15463 21396 12496 5500 43531 34790 207427 56460 25098 49765 15641 57356 60426 49999 51918 13205 6717 43207 39116 60819 42228 208687 43915 51048 29129 60377 8689 44022 61124 31515 29611 211307 42705 15654 58273 204222 16334 5564 12488 30967 41107 8902 8553 29180 58349 34282 211585 20799 8943 34695 58305 50292 43599 3213 207907 198781 43545 198736 48294 60610 45014 29527 30827 201471 50173 29668 30938 61215 34660 20915 15917 35826 21099 42633 205072 3170 198440 33941 60672 196744 50300 8916 206150 31472 31084 48273 24778 12775 16050 6894 34442 25376 42004 200994 60788 47143 25460 42010 2129 48620 201508 33953 31641 51263 57276 34119 198220 41695 35433 34066 31742 29457 205917 15753 199909 31595 21439 212655 5586 59395 61337 199713 57624 39097 39522 31273 210874 8282 41357 201971 28757 44931 29646 208189})

I’m sticking to this as your one does not work, this is working for me.
I get to pick which bot to allow on the website and only allow UK customers