How to skip DDos rules/alerts when load testing a website api url?

navneet-singh · December 2, 2024, 6:06am

What is the name of the domain?

What is the issue you’re encountering

DDos alerts/emails when load testing

What are the steps to reproduce the issue?

I am trying to load test my website api using apache ab tool. When I was doing the load testing, I received DDos alert email for DDos attack (because of the load testing). How can I skip the DDOS ruleset when doing load testing ? What config to use in cloudflare dashboard ? Can I allowlist based on IP addresses OR http headers (multi IP load testing) OR query params OR any other way this can be accomplished in cloudflare ?

jnperamo · December 2, 2024, 3:44pm

Load test directly against your backend and not proxied records

navneet-singh · December 3, 2024, 1:32am

Yes, doing the load testing with direct IP address of the server with host hdr.

Cloudflare ddos email alert mentioned some steps to disable ruleset but that was too complex for temp testing like this.

system · December 5, 2024, 1:32am

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Website Stress Testing Website, Application, Performance	5	7663	December 29, 2021
DDOS attack on my site Security	17	5175	October 10, 2020
DDoS attack still stopping website from loading - Is there something else I can try? Security	17	4409	May 10, 2022
Stress test on Cloudflare? Website, Application, Performance	3	3887	February 17, 2022
Experiencing a DDoS Attack Security	2	1518	May 14, 2022

How to skip DDos rules/alerts when load testing a website api url?

What is the name of the domain?

What is the issue you’re encountering

What are the steps to reproduce the issue?

Related topics