This means Java 8 & Java 7 requests blocked by default.
Java 8 is commonly used for Android Development.
These versions of Java by default sends a user agent like this
Java/1.8.0_232 which is blocked by Cloudflare Security by default. I dunno why they do it but it might create unnecessary problems and confusion for people using Java for development.
From my test I have seen that any User Agent starting with
Java/1. is blocked.
I dunno why this behaviour. Even Disabling Security from Page Rules doesn’t solve this.
I tried Firewall Rules also. Even if Firewall Rules allow the requests and it appears to be allowed in Security Dashboard logs it is still blocked (?) Maybe because I was using Cloudflare Pages.
By Header Modification does solves this. (Needed hours to figure this out)
~ $ curl -A "Java/1.8.0_232" -X GET https://www.cloudflare.com error code: 1010 ~ $ curl -A "Java/1." -X GET https://www.cloudflare.com error code: 1010