Custom rule blocking my customers

Hi all

I have a lms system were i sell course
client will purchase a course via woocommerce and it create an account for them
they then log in to take there course
Recently i created a Cloudflare rule that protects my dashboard
but it always bothered how were then my users going to access their course (rule is below)
Recently a user complained that got this message saying Cloudflare blocked them. he sent me the ray id, and it was this rule that blocked them
Does that mean I cannot use this rule, I thought it would only block admin or administrator
what recommendations would you suggest?
below is the rule
(http.request.uri.path contains “/wp-admin/” and not http.request.uri.path contains “/wp-admin/admin-ajax.php” and not http.request.uri.path contains “/wp-admin/theme-editor.php”)


Perhaps you can request the RayID from the customer where he can get it from the bottom of the Error page? You then then look up the Ray ID in your security events (under Security Tab) to see why exactly he is blocked. – Do make sure he is eactually blocked, i.e. he’s presented 4XX errors from Cloudflare.

Hi Wanda thank you the client did send me the RayID, I checked and it was my rule blocking access to wp-admin thank you

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.