Feature request: HTTP return code to control WAF

HackerFactor · December 18, 2024, 3:07am

What is the name of the domain?

n/a

What is the issue you’re encountering

Feature request

What steps have you taken to resolve the issue?

I’d like to return an HTTP return code that Cloudflare will interpret as “block this client for 10 minutes.”
(Similar to how Nginx interprets HTTP 444 as “quietly disconnect the client and let them hang.”)
I’d like to return a code, like “445” that tells Cloudflare that the IP is hostile and the client should be blocked for 10 minutes. (Why 10 minutes? I don’t know why they were attacking/scanning my server, but this cuts off the abuse temporarily. And I can always return it again if they do it again.)

If this functionality already exists, then please point me to usage!
If it doesn’t exist, then I’d like this as a feature request.

sjr · December 18, 2024, 5:47am

Generally the WAF only works on requests, not responses. If you have an Enterprise plan, you can use rate limiting to limit an IP by counting a particular response code.

Alternatively you could use a Worker with D1/Durable Objects to implement the feature.

system · January 2, 2025, 3:07am

This topic was automatically closed after 15 days. New replies are no longer allowed.

Topic		Replies	Views
Ban / block IP based on http reponse / train WAF Security	3	1433	October 22, 2022
Can i create actions/rules based on the HTTP response code? Security dash-troubleshooting	3	2174	October 15, 2019
WAF Rule based on response code Rules	5	2123	October 22, 2023
Cloudflare WAF Security	4	2039	October 20, 2019
WAF rule for blocking IP Security Center	7	26	February 19, 2025

Feature request: HTTP return code to control WAF

What is the name of the domain?

What is the issue you’re encountering

What steps have you taken to resolve the issue?

Related topics