I’m under attack since a few days. I used Cloudflare Analytics to analyze the attacks. 99% of the malicious traffic seems to come from China, India and Russian Federation. As a result I created a Firewall rule which blocks traffic from these three countries. In addition I’m using “Under Attack” mode to challenge everyone.
The firewall works as seen below.
They seem to be attacks on web-application level, because my Apache server ist not responding anymore, but my server is up. Thus I also enabled Rate Limiting.
However, my webserver keeps getting offline… It seems CloudFlare does not block all traffic from this countries. Is the firewall to weak or need I upgrade to Pro/Business for better protection? Can anyone help how to block these attacks?