I would like to block access from all AWS servers as they just scrape my page though not allowed to. Unfortunately, Cloudflare IP Firewall allows only /16 and /24 CIDR blocks (or individual IPs) to be blocked. But AWS also uses /13, /14, /15,… blocks - obviously I cannot block the IPs individually…

IP Firewall only allows /16 and /24 CIDR blocks

Judge January 4, 2019, 6:29am 5

It’s possible to block custom IP ranges via CF workers:

One of these could easily be used in a CF worker script that 403’s if the IP is from AWS.

Topic		Replies	Views
Can not block IP range Security dash-getting-started	5	8458	September 19, 2019
Firewall CIDR /24 IP blocking didn't work? Security	5	2360	June 5, 2020
Block IP range problem Security	14	2780	January 5, 2020
Problem blocking CIDR IP range Security	3	2564	June 18, 2021
Can't Fully Use CIDR Addresses with Cloudflare Firewall Usage & Design	5	2814	January 16, 2022