Firewall rate limiting help

Hello all,

my firewall doens’t mitigate DDos on my website, i’ve a lot of Request on a single minute from differents IP.
I’ve tried to set up Cloudflare Rate limiting, but seems that isn’t working. i’ve probably wrote something wrong,

that’s what i’ve wrote:

I would block all the spam that is on " "
My rule is correct or i’ve to write " * " or i can write only " * " to secure all site? (but it’s useless cause they’re Ddossing my dologin.php only)

thank you

anyone?.. :frowning: