Configuring Cloudflare's WAF Rules

I’m trying to secure my GoHighLevel-built site using Cloudflare’s Web Application Firewall (WAF) and geo-based blocking rules, but despite configuring the rules, the WAF doesn’t seem to be functioning as expected.

Using Go High Level requires that your DNS records are set to “DNS only” and not “Proxied”…

Therefore your website requests do not pass through your Cloudflare account, but direct to Go High Level instead, so any rules set in your own account won’t have any effect.

1 Like

That is not what I’m asking.

That’s EXACTLY what you’re asking :smiley:

Let me break it down for you:

  1. The can ONLY secure your site with Cloudflare (including using their WAF) when your DNS is set to Proxied (:orange: )

  2. But your hosting provider GoHighLevel REQUIRES your DNS to be set to “DNS-Only” (:grey:). The GHL link @sjr provided specifically says “we do not support Cloudflare Proxy”.

In other words, you cannot use Cloudflare’s security features while using GoHighLevel.

It may not be what you want to hear, but it is what it is.

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.