On my news site, the frontend lists the news with API requests. There are too many API requests on the site. This causes Cloudflare to constantly issue a robot warning. The hosting company says this is a DDOS attack, but all DDOS attacks still originate from the site’s own server. I tried all the page rules on Cloudflare, but unfortunately I couldn’t find a solution for this.
What are the steps to reproduce the issue?
On my news site, the frontend lists the news with API requests. There are too many API requests on the site. This causes Cloudflare to constantly issue a robot warning. The hosting company says this is a DDOS attack, but all DDOS attacks still originate from the site’s own server. I tried all the page rules on Cloudflare, but unfortunately I couldn’t find a solution for this.
I see the Verify a human warning from Cloudflare. After all, it is also a robot verification and it is something that comes from CF. Since it also blocks the requests for the site, no content can be displayed on the site homepage.
There is no code related to Google Recaptcha anywhere on the site. Everyone who visits the site sees this screen. Sometimes Cloudflare’s robot warning, sometimes this. Although I blocked the requests with many page rules, I could not find any solution.
..but for the avoidance of doubt, the captcha shown in the screenshot above is not from Cloudflare so you need to fix that first if that’s what every visitor sees.
