Random query string DDoS

jnperamo · May 4, 2020, 11:01pm

Hello,

Earlier we were receiving a DDoS attack which was only stopped with captcha enabled, however, having enabled captcha for all visitors is beyond tedious.
I tried to make a page rule but it was not being hit. The bots were making a request similar to:
https://site.com/?{RANDOM_STRING}
I could not captcha all requests like /* as it would affect legitimate traffic as well, so I tried to block /?* expecting it to challenge all requests that started with an ? and were followed by anything.
The rule page did not allow me to make this, I assume it’s not supported, is there any way we could make a similar rule?

Regards.

intr0 · May 5, 2020, 4:27am

Use this:

Anything beyond a single ? will be blocked or challenged, whichever you prefer.

eldhose · May 5, 2020, 4:57am

This is one reason i need a feature which Cache Everything and same time Ignore Query Strings.

eva2000 · May 5, 2020, 5:17am

You can use CF Workers to normalize the query strings so you can tell CF Worker to do cache everything even for query string urls Strip UTM query string

system · June 3, 2020, 11:13pm

This topic was automatically closed after 30 days. New replies are no longer allowed.

Topic		Replies	Views
Cache Everything with Ignoring Query Strings for PHP pages Website, Application, Performance	11	5566	June 8, 2020
Block GET requests with cache-buster query string? Security	5	3502	May 2, 2021
Any update on "Cache Everything along with Ignore Query Parameter" Website, Application, Performance	2	2396	May 3, 2020
Block query string Security	1	1019	May 4, 2023
Can I "Cache Everything" AND "Ignore Query String"? Website, Application, Performance	5	9260	October 21, 2019

Random query string DDoS

Related topics