Fireware blocking rules not working

erin4 · April 4, 2025, 1:52pm

What is the name of the domain?

What is the issue you’re encountering

Fireware IP blocking rule not working

What is the current SSL/TLS setting?

Flexible

What are the steps to reproduce the issue?

I’ve set up a firewall rule to block all access to my site except for a specific list of IP addresses. However, I’m still able to access the site from any device I own. I’ve also tried creating additional firewall rules (e.g., user-agent blocking), but nothing seems to work. I have proxies enabled, and from the developer tools, I can see that my server traffic is coming through Cloudflare. My code is deployed on OnRender.

Screenshot of the error

sjr · April 4, 2025, 2:16pm

If you are CNAMEing to something.onrender.com it looks like Render use a CNAME setup on Cloudflare, so requests won’t pass through your Cloudflare zone.

dig +short something.onrender.com
gcp-us-west1-1.origin.onrender.com.
gcp-us-west1-1.origin.onrender.com.cdn.cloudflare.net.
216.24.57.252
216.24.57.4

erin4 · April 4, 2025, 2:30pm

I’m using an A record to point to OnRender’s IP address, though I’m not sure if that makes a difference. Is there any way to bypass OnRender’s Cloudflare and use my own instead? Or do I need to switch hosting providers?

sjr · April 4, 2025, 2:43pm

They are not using Cloudflare for SaaS, so no. Their IP addresses use Cloudflare’s anycast network and requests will go direct to them.

system · April 6, 2025, 2:43pm

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Cloudflare blocking errors Getting Started	5	3139	September 10, 2020
Issues with Cloudflare IP Whitelisting - Seeking Assistance Security	3	1345	July 4, 2023
Firewall Rule not working for SA users Rules	4	1314	June 21, 2022
Blocking a country not working Security	2	1072	January 6, 2023
Firewall not blocking all requests with matching custom rule Security	3	12	April 18, 2025