Hi,

Cloudflare uses rate limiting based on ip address in WAF.
But say the client making the request is sitting behind a proxy.

Which ip will Cloudflare use to block, will it use the client ip or the proxy ip?

Further can I configure Cloudflare to use both ips?

The IP that makes the connection to Cloudflare, so the proxy IP.

Only if the proxy is making the original IP known to you in a header and that would require Advanced Rate Limiting which is an Enterprise product.