You’re filtering on Mitigated, so it sounds like those were blocked. What makes you think they’re bypassing your rules? Are these requests getting to your server?
not it is not mitigated, instead of blocking it is doing a challenge and as you can see the script kiddie is bypassing my waf rules it means the script is able of doing superbot verification per second and scan , as you can see in the image
i need to block it and i dont know how because it is bypassing cloudflare. help cloudflare bug is found @cloudflare
I’m not seeing that. I see a list of requests that were mitigated. When I check my mitigated requests by expanding an entry, I see they’re all 403s. I have that same IP address attacking mine, and my Custom Rule that blocks that ASN is blocking them:
I even searched my server logs for that IP, and it never appears.
You’re going to have to provide better evidence than this if you’re claiming there’s a bug.
If you’re thinking they’re bypassing your rules and hitting Super Bot Fight Mode, this behavior indicates that SBFM is triggering first. Try turning it off, then monitor activity.
found out a hacker is not getting blocked by the waf , and despite exclusivelly blocking asn in ip custom waf and waf tools, the hacker still bypass and doesnt get blocked. it gets bot mode but i need it to block it , and despite… " idem" it stills happening. so its like a bug.
they are bypassing waf, i literally have a rule that deny everything except 1 carrier asn, and they are bypassing everything they appear in "mitigated = no "
You need to disable “Bot fight mode”. After that your WAF rules will work, blocking traffic correctly. “Bot fight mode” from the Cloudflare Free plan is useless.
