In case someone else stumbles into this beating their head against the wall. Still no solution. We went so far as to create a firewall rule to allow each of the variations of shipstation urls.
ss1.shipstation.com
ship1.shipstation
shipstation
all the way through ss13.shipstation in both combinations ss1 and ship1.
We also obtained the json file from shipstation that included the full range of AWS ips. We used IP Extractor - Online Regex Tools | Text-Utils.com) to extract the ips from the json file. Used excel to remove duplicates. Within Cloudflare navigate to your account, then preferences, then Lists. Create a new list name and on the next page it allows to upload a csv file. Take the extracted list minus the duplicates and save as csv. Import the new list. Create a new firewall rule expanding on the url list. Use ip source address>is in list>then your new list name. Allow.
However even after all of that if you re-enable Super Bot Blocker to Block the store connection is lost and becomes 403 Forbidden. Turn off Super Bot Blocker and store connection is restored. Wasted enough time on this. If someone find the solution please do share.