Can't bypass WAF managed rule

Hello,

I have a webserver running portainer, and Cloudflare is blocking one of the URL through a WAF Managed Rules.
I saw in the documentation that it was possible to bypass this rule using a firewall rule but I can’t find it in the options :

Could someone point me in the right direction to allow this URI ? Or disable this rule ?
I’m using the free plan

Thank you.

Here’s the json of the block :

{
  "action": "block",
  "clientASNDescription": "LDCOMNET",
  "clientAsn": "15557",
  "clientCountryName": "FR",
  "clientIP": "MYIP",
  "clientRequestHTTPHost": "MYDOMAIN",
  "clientRequestHTTPMethodName": "GET",
  "clientRequestHTTPProtocol": "HTTP/3",
  "clientRequestPath": "/api/endpoints/40/docker/v2/browse/get",
  "clientRequestQuery": "?path=wp-config.php&volumeID=wordpress_projetxxl_wordpress",
  "datetime": "2022-08-04T06:32:22Z",
  "rayName": "73554165f8c039a5",
  "ruleId": "9ce4e284ff2a486aaa37d642bff5a079",
  "rulesetId": "77454fe2d30c4220b5701f6fdfb893ba",
  "source": "firewallManaged",
  "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.134 Safari/537.36 Edg/103.0.1264.77",
  "matchIndex": 0,
  "metadata": [
    {
      "key": "ruleset_version",
      "value": "44"
    },
    {
      "key": "version",
      "value": "26"
    },
    {
      "key": "type",
      "value": "customer"
    }
  ],
  "sampleInterval": 1
}

Greetings,

Thank you for asking.

May I ask if the user (you) have to visit the URL or some WordPress plugin via WP API/REST, or maybe the WP-cron, meaning the IP is Web server? :thinking:

By the User-agent, that’s a user for sure, correct?

I’d suggest you to whitelist your origin host / server / hosting IP address by navigating to the Security → WAF → Tools → IP Access Rules with the action “allow” for your Website and try again.

Thank you for the answer

No actually, the client is automatically redirected to an URL to download a file. So any client should be able to access the URL. It’s worth mentioning that depending on the file, sometime it works

I did what you proposed and it didn’t seem to affect it :

Any news on this ?

It’s really annoying that Cloudflare blocks some URL without giving a way to allow them

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.