Payment gateway IP communications blocked (Redsys)

pablohstc · December 4, 2024, 9:28pm

What is the name of the domain?

What is the error number?

499

What is the issue you’re encountering

I need to receive requests from the following IPs: 195.76.9.222 and 195.76.9.187. These IPs are from Redsys, a payment gateway in Spain. And sometimes, they get 499, it’s not consistent, but it started to happen daily since a few days ago.

What steps have you taken to resolve the issue?

I created a custom WAF rule to skip these IPs. But it does not work consistently, it still fails from time to time.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full

zakri · December 6, 2024, 3:05am

Upon checking in firewall events, it appears that traffic from source IP addresses 195.76.9.222 and 195.76.9.187 is being appropriately bypassed by the configured WAF rule. To confirm this, you can navigate to Dashboard > Security > Events and apply filter for the specific source IP addresses to verify the skipped actions. Could you please review the connection timeout setting on origin server and increase the timeout threshold can help ensure that requests have sufficient time to complete?

For detailed information on 499 error, kindly refer to the documentation here: 4xx Client Error · Cloudflare Support docs

system · December 8, 2024, 3:06am

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
In Spain, Redsys IP addresses are randomly blocked by Cloudflare General	22	247	March 16, 2025
Instant Payment Notifications for Redsys blocked randomly Security	1	45	February 18, 2025
Cloudflare blocking post requests General	2	21	January 3, 2025
WAF rules are not working for requests from the Philippines Security	1	11	March 21, 2025
429 errors when site connects to itself, even when IP skipped with WAF custom rule Website, Application, Performance	2	37	October 22, 2024