IP Access Rule Sets

When creating an allow IP Access rule does cloudflare function like a normal FW appliance where there is an unseen explicit deny ip any any at the end? Or do I need to implement that by ip addresses/country?

Cloudflare’s proxy is open to all requests for a valid hostname by default by default. The assumption is that a given host is intended to be exposed to the interwebs by default. You can create a deny all except style rule, but there is no implicit deny all.

2 Likes

Thank you.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.