Firewall Rules

This is a screenshot

Can you post the expressions?

Blockings work well for me. Also ensure that you didn’t whitelist IPs within the IP firewall or Access rules. I am nit pretty sure which one triggers first.


(ip.src in { }) or (ip.src eq

Action - block

I dont believe src can be matched against a CIDR. You’d need to specify a proper IP address. eq does a full string comparison as far as I understood and in does the same against a list of strings.

Your use-case really is better done with access rules.

I’ve generated the expression with the firewall. “IP address is in” results in “ip.src. in”

Are there any other rules allowing… what ever?

Have you tried to negate the rule?

(not ip.src in {}) or (ip.src ne

Action - Allow.

Though the strange thing is that challenge works. :thinking:

My bad :blush:


1 Like

I just tested the CIDR value and it did block me in my case. Rules do not take immediate effect but it might take several seconds, maybe also try clearing any possibly Cloudflar session cookies.

This topic was automatically closed after 30 days. New replies are no longer allowed.