What is the name of the domain?
What is the issue you’re encountering
The rule skips requests from the specified protocols.
Was the site working with SSL prior to adding it to Cloudflare?
Yes
What is the current SSL/TLS setting?
Full
Your screenshot seems to be logs from your origin. You haven’t given the domain to check, but that WAF rule will only block those protocols if your DNS record is proxied. That block happens at the Cloudflare edge. The protocol that Cloudflare then uses to connect to your origin depends on which ones your origin supports and you have enabled on Cloudflare as here…
If your DNS record isn’t proxied, requests will go direct to your origin and your Cloudflare settings will have no effect.
2 Likes
Yes, you’re right. I completely forgot that the scanners find the real ip of the server behind Cloudflare and send requests directly. Filtering the protocol version through the domain works as expected.
Thank you.
This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.