Help Setting Up Some Rules for site under attack

Hi

Our website has been under DDOS attack for a week or so now, we have cloudflare pro and its doing a great job of mitigating most of it but now and then I have to turn on the JS challenge.

Ive noticed that most requests are hitting example.com/my-account/

Whats the best way to go about protecting this page more, I am thinking either rate limiting that page or JS challenge just for that page instead of whole site

Only thing is I am quite new to Cloudflare and not too confident on how to set that up IF its a good idea, any pointers would be greatly appreciated

Website is wordpress/woocommerce

Thanks!

Yes, you can try challenging hits to that page, then look for other patterns in your security event log and tune your rules to filter the attack.

There is a good guide here…

1 Like

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.