I’m having two problems with Cloudflare’s firewall (possibly one with two examples instead).
I’m setting up firewall rule: JS challenge all traffic except country: UK. Behaviur: many UK customers gets the JS challenge.
Block all hosts except “www.domain.com” “domain.com” and “m.domain.com”. Behaviour: looks like all visitors get blocked. I had a bunch of people blocked within 2 minutes. They all seemed to be using either “www.domain.com” or “domain.com”.
Am I missing something? Is it possible that some visitors have both “hostname” and “country” values empty? That would explain cloudflare’s behaviour.
Thanks in advance.