I have a domain named “DOMAIN” and in Cloudflare dashboard I added these records in DNS tab:
A / DOMAIN / 188.8.131.52 / Proxied
*A / .DOMAIN / 184.108.40.206 / DNS Only
Now I want to block all request that are sending from a country that named “X”.
I added this rule in my firewall rules:
hostname does not equal DOMAIN
country equal X
when I check test.DOMAIN from X, it was available!
I added this record in DNS tab:
A / test.DOMAIN / 220.127.116.11 / Proxied
Then I changed the record to:
A / test.DOMAIN / 18.104.22.168 / DNS Only
Firewall did not work.
I think firewall does not work for “DNS Only” records, and I either do not want to use “Proxied” record and can not enable that for wildcard record in free plan.
Do you have any solution for me?
I just need to block all request from a country for wildcard subdomains in “DNS Only” mode.