My website is under brute force attack by IPs all belonging to cloudflare


#1

I checked the ip out and they all belong to Cloudflare?

Is this a scam company that tries to hack your username and password to gain access. Screenshot here. Every single Ip belongs to cloudflare Inc.

Imgur


#2

Chances are…your site is on a Cloudflare plan. As a reverse proxy, all visitors to your site will come through Cloudflare IP addresses, but will include headers identifying the real source:
CF-Connecting-IP
X-Forwarded-For


#3

That, and that the OP hasnt read https://support.cloudflare.com/hc/en-us/articles/205177068-Step-1-How-does-Cloudflare-work-

But immediately yelling “scam” :roll_eyes:


#4

Alright, my bad.

I will delete my site from cloudflare then.

Thanks for yo help!


#5

You dont need to remove site for that, you can simply rewrite the IP address with mod_remoteip.


closed #6

This topic was automatically closed after 30 days. New replies are no longer allowed.