My website is under brute force attack by IPs all belonging to cloudflare


I checked the ip out and they all belong to Cloudflare?

Is this a scam company that tries to hack your username and password to gain access. Screenshot here. Every single Ip belongs to cloudflare Inc.



Chances are…your site is on a Cloudflare plan. As a reverse proxy, all visitors to your site will come through Cloudflare IP addresses, but will include headers identifying the real source:


That, and that the OP hasnt read

But immediately yelling “scam” :roll_eyes:


Alright, my bad.

I will delete my site from cloudflare then.

Thanks for yo help!


You dont need to remove site for that, you can simply rewrite the IP address with mod_remoteip.

closed #6

This topic was automatically closed after 30 days. New replies are no longer allowed.