Protection against malicious traffic from certain countries

Hi, I am taking my first steps with Cloudflare. I want to protect the site from traffic from certain countries - I don’t want to block it completely, I just want to make it more difficult for people who might have bad intentions. Do I understand correctly that the only thing I need to do is:

  1. Security > WAF > Create rule: (ip.geoip.country in {“IN” “CN”} and not cf.client.bot) > Managed Challenge.

Is that ok and enought? Or should I use Interactive Challenge or mybe something else?

Hello,

That rule can work however if your plan allows you to use bot management that will secure most of those malicious requests that you are seeking to block.

This guide below is a good jump off point to make sure you secure your zone.

If you have any further questions please let us know. Take care.