Cloudflare is not blocking bot and IP properly on nextjs app running on vercel

We have a nextjs application running on vercel.
I have created A record and a CNAME pointing to my vercel and enabled proxy on that.

I still see requests coming on my vercel logs from the malicious bot which is sending requests from a specific IP. I tried blocking that IP from WAF in Cloudflare, but it doesn’t seem to block that as well. Though when I tried my IP it worked fine, but didnt work on my friend’s IP as well.

Something seems wrong. It seems not all requests are being proxied by Cloudflare. Anyone has any idea what can be the issue? or does cloudflare doesnt work properly with vercel hosted applications?

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.