Current Cloudflare WordPress plugin not compatible with new Managed Rules WAF

mcohen1 · June 24, 2024, 4:52pm

What is the name of the domain?

What is the issue you’re encountering

For Cloudflare plans on the new Managed Rules WAF, the Cloudflare plugin doesn’t show the WAF as enabled

What steps have you taken to resolve the issue?

Attempted to turn on the WAF from Cloudflare plugin results in a ‘Bad Request’ error. Cloudflare dashboard shows WAF already enabled.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full

Screenshot of the error

malmeida · June 27, 2024, 11:15am

Hi @mcohen1,

Could you please tell me if you are using Cloudflare via one of our partners?

Thanks in advance.

mcohen1 · July 1, 2024, 4:20pm

I believe you are asking if this site is hosted by WP Engine, and the answer is ‘no’. The Plugin used to work for the WAF enablement until moving our sites to the New Managed Rules.

mcohen1 · July 1, 2024, 4:21pm

Does anyone have a site using the new Managed Rules that this WAF on/off slider is fully functional? If this is just for us (we are using a Cloudflare ‘Tenant API’ Tenant), then I’ll move this to a support ticket.

system · July 16, 2024, 4:21pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Update to the new managed rules Security	3	1217	April 26, 2023
I keep getting a message of "Bad Request" when I try to activate the WAF on my Cloudflare plugin for WordPress Security	4	1955	May 9, 2023
Not allowed to edit setting for waf (Code: 1015) Security	2	2686	December 16, 2020
WpEngine, Wordpress, and Cloudflare managed ruleset Security	18	3408	December 26, 2022
Page rules no longer working Rules	2	1853	August 5, 2022