Firewall rule Anomaly:Header:User-Agent


I recently enabled WAF and we are getting a lot of these hits:
Action: Challenge
Rule: 100043A/100043B - Anomaly:Header:User-Agent
Group: Cloudflare Specials

The website runs on Wordpress so I enabled the Cloudflare Wordpress and Cloudflare Specials managed rulesets. I’m afraid these are false positives but it’s not clear to me what these rules do or what it looks for. What would be the risk if I disabled them? Is it common that about 75% of the events are these two rules?

This topic was automatically closed after 30 days. New replies are no longer allowed.