Path rule does not work to block the traffic

What is the name of the domain?

echig.dev

What is the issue you’re encountering

WAF blocking rule does not work

What steps have you taken to resolve the issue?

One of the subdomains we are using wiki.* points to a VM server where WikiJS is hosted.
Recently after we updated the server I noticed a strange call in the log files:
172.71.98.40 - - [15/Aug/2024:22:26:03 +0000] “POST /botishere HTTP/1.1” 404 19 “-” “-” 480 “-” “-” 0ms
I have set a URI Path blocking rule for /botishere on cloudflare but it appears to be working.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full (strict)

May I ask you to share a screenshot of a Custom Firewall Rule here with us for double-checking and troubleshooting? :thinking:

Is it the only rule on the Firewall Rules list, or?

Is it the first one from above of the active ones?

Sure, here you go.
It is the first rule.

Seems to be working:

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.