One ip repeatedly visible in the logs

Bartko · June 29, 2019, 5:49am

There is some kind of bot and it constantly and extensively scans my website from IP 216.244.66.242. I blocked it, but now I can’t use Firewall Logs as I wish, because there are too many logs entries with block action from this IP.

I had the same problem when I allowed access to a particular URL and there was too many allow log entries that Firewall Events generated by Managed Rules are hidden in those repeated entries.

Is it possible to exclude some of such logs entries from Firewall to be able to look into other logs?

sdayman · June 29, 2019, 1:18pm

Others have brought this up. Cloudflare says they’re working on the Firewall Events Log to make it more user friendly. No ETA, but we feel your pain.

system · July 29, 2019, 1:19pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Request for smarter firewall log list Feature Request Submitting & Feedback firewall	5	3413	August 30, 2019
Filter Firewall Event Log Feedback	4	3195	February 26, 2019
How to filter out a certain IP from Events. (see all events except this IP) Security	2	1931	August 24, 2019
CloudFlare Firewall Logs DNS & Network CJ313	4	915	March 28, 2024
Any way to determine why an IP Address is being blocked by the firewall? Getting Started dash-getting-started	4	2230	January 19, 2019

One ip repeatedly visible in the logs

Related topics