Retention period of security logs such as WAF

sasaki · March 9, 2022, 8:53am

A customer asked about the retention period of security logs such as WAF.
After investigating,

When you actually check from your dashboard,
Free 14th
Professional 14th
Business 30 days
Enterprise 30 days

According to the official document (4 days before the last update)
Free 24 hours
Pro plan 24 hours
Business plan 72 hours
Enterprise plan 30 days
https://developers.cloudflare.com/waf/analytics

In the following blog post (Monday, December 9, 2019)
Free No mention
Professional 3 days
Business 30 days
Enterprise 30 days

Which period is the correct information?

eva2000 · March 11, 2022, 11:58pm

Are you checking dashboard Firewall or Web Analytics ? Firewall Analytics dashboard has 72hr filter while Web Analytics has 30 day filter for duration interval for single a single time

The https://developers.cloudflare.com/waf/analytics time windows are related to how far back you can check your metrics for. The dashboard filter duration for start and end date are NOT the same thing - that duration filter is how long an interval you can view at a single time.

So take Enterprise Firewall, you can go back 30 days but only 72hrs a time

March 10-12th = 72hr interval

February 10-12th = 72hr interval but 30 day time window

sasaki · March 14, 2022, 11:27am

@eva2000

thank you.

https://developers.cloudflare.com/waf/analytics/
Does the time written in indicate the length of the period that can be confirmed on the dashboard?

How many days in advance can I specify the Pro Plan, Business Plan, and Enterprise Plan?

eva2000 · March 14, 2022, 11:35am

Just filter on the date and see how far you can go back.

Firewall rule is 72hrs duration start/end max even for Enterprise plan - well at least on my Enterprise plan it is.

system · March 22, 2022, 1:25am

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.