I hit 19.3M attack every second Help me Out

bdipesh101 · July 11, 2024, 11:26pm

What is the name of the domain?

What is the issue you’re encountering

I experienced a 19.3M attack per hour, all through HTTP. Despite purchasing the pro plan and activating the rules, I’m still facing this issue.

What steps have you taken to resolve the issue?

Here’s what I did on my Cloudflare setup:

Definitely automated Block
Static resource protection ON
Optimize For WordPress ON
JavaScript Detections ON
Block AI Scrapers and Crawlers ON
On WAF Manage Rule Set:

Cloudflare Manage Ruleset ON
Cloudflare OWASP Core Ruleset ON
Cloudflare Exposed Credentials Check Ruleset ON
For DDoS:

Activated Under Attack Mode
Even after taking these measures, my resource usage goes up to 80-90%. I’m unable to block the attack. Is there any solution to this that allows Google bots to access my site?

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Flexible

Screenshot of the error

bdipesh101 · July 11, 2024, 11:29pm

This step what i did, but still they are attacking with under attack mode also

Erisa · July 12, 2024, 9:40am

Check this:

And this:

This may also help, if requests are bypassing Cloudflare:

system · July 14, 2024, 1:21pm

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Getting attacked, 180mil requests in 24h. HELP Security cdn , firewall , attacks , dash-troubleshooting	7	2383	March 14, 2019
Being attacked relentlessly Security	5	1941	March 27, 2020
Cloudflare WAF is functional? Security	2	395	December 27, 2023
Getting to Cloudflare support on DDoS attack Security	4	903	April 6, 2023
[just asking] 600k request and cloudflare is down? Website, Application, Performance dash-troubleshooting	6	2924	May 29, 2019