I’m unsure how to ask this but I allow my servers that are proxied to allow only Cloudflare IPs. I would like to block VPNs by their ASNs and so far so good but at times I see Cloudflare IPs abusing the site, I would like to entirely block WARP.
If I block WARP ASN, would this at all affect my proxy and/or users accessing my site on regular IPs?
I wouldn’t think so, since any blocking (WAF or at origin) is based on client IP addresses and is unrelated to the Cloudflare ↔ Origin communication that takes place using Cloudflare IPs. If blocking on your origin server, please make sure that you are restoring visitor IPs: Restoring original visitor IPs · Cloudflare Support docs
If you want to be even safer, you can allowlist the trusted IPs:
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.