Issue with WAF Custom Rule

What is the name of the domain?

drkatyjane.com

What is the issue you’re encountering

Our website is hosted on showit, we are trying to have a custom rule to block all traffic from India. But the website is still visible.

What steps have you taken to resolve the issue?

When our DNS is set as “proxied” in cloudflare, the website goes offline. So I have it changed to DNS only. I do have the WAF rule set up but we have people in India trying the website and it still populates. My guess is when the proxy is on, the rule worked because previously the stats had said it had blocked 3 attempts to view the site, but the site was not actually online when this was on. I have contacted showit and they cannot help us any further.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Flexible

Screenshot of the error

The returned IP address is not Cloudflare IP for your domain, rather the origin host/server, therefrom meaning either your Cloudflare DNS records are unproxied :grey: (DNS-only) or you’ve temporarly enabled the “Pause Cloudflare” option for your zone.

Kindly, to make WAF Custom Rules working and other security & performance settings applied, navigate to the DNS tab via https://dash.cloudflare.com/?to=/:account/:zone/dns and switch the DNS records for A drkatyjane.com and CNAME www to proxy :orange:.

What error code do you get when proxied :orange: ? :thinking:

Check your Amazon firewall rules and allowlist Cloudflare IPs:

Should be cross-checked and fixed as well for security concerns.
Before moving to Cloudflare, was your Website working over HTTPS connection?

You could determine if HTTPS is working okay and if this behaviour of your Website continues even by using a “Pause” option at Cloudflare as follows from below? :thinking:

  1. Use the “Pause Cloudflare on Site” option from the Overview tab for your domain at dash.cloudflare.com .
  2. The link is in the lower right corner of that page.
  3. Give it five minutes to take effect, then make sure site is working as expected with HTTPS without any error
  4. Check with your hosting provider / cPanel AutoSSL / Let’s Encrypt / ACME / Certbot and manually click to renew it
  5. Only then, when your website responds over HTTPS, you should un-pause Cloudflare and double-check your SSL/TLS setting to make sure it’s Full (Strict).

Is it the only one rule you’re using and it’s active under the Custom Rules list?
Is it the 1st from above if you have more Custom Rules?

Could you share a screenshot of this rule for troubleshooting?

1 Like

Hi there! When proxy is on, we are getting a redirected too many times error. So my guess is Cloudlfare and showit are basically fighting for different IP addresses?

That’s because of:

Make sure change it and use Full (Strict). How do determine and do it, please follow the steps from above reply to double-check for HTTPS at origin host/server.

Thank you for your reply. I did turn proxy on and SSL to strict, but I still get the redirect error.

I have to turn the proxy off for now we are in the middle of a launch and when it is on, the website is offline as you see in the above shot. Any help you can provide would be appreciated. Happy to connect on zoom and compensate for your time if we can get this fixed.

Website is working fine over HTTPS, despite you’ve enabled “Pause Cloudflare”; otherwise the DNS records aren’t proxied :orange: as they should be.

I had to turn the proxy off, because the website is offline when I do, we are in the middle of a launch, so the website cant be offline, when I turn proxy on, I get this:

Still using this? Might be the cause of your error in the Web browser if proxied :orange: .

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.