We enabled Cloudflare today and the “bad guys” are still trying SQLinjections from the philippines and Russia etc towards our site.
Isn’t cloudflare supposed to protect us against this or what is the point using your service?
The problem now is that we can’t stop them since they have CloudFlare IPnumbers (different all the time) and there is no way to block them.
How do we protect ourself from these guys trying to hack our site if not routing through Cloudflare is an option? We have now disabled the routing through your servers to be able to stop them since now we get their real IPadress and blocked them manually ourselves.
/Fredrik and Per