We used CloudFlare for more than 5 years, and everything was just fine until two weeks ago when one of a DDoS attack was occurred, and we activated the Under Attack mod. Immediately, after that our website disappeared from search result. Than, we unable the Under Attack mode but the website still doesn’t showing up in the search results.
We have Full SSL security enabled, checked all Firewall configuration and cache options and everything looka fine. Google crowlers are not blocked, nor IPs.
Do anyone know what else we can do to fix this issue?
Already done. I am getting the Coverage message ‘Page are redirected’. When I check it in other tools getting 307 status code. But we didn’t define any redirect for that URL.
307 means Internal Redirect usually happens due to HSTS, that’s normal. It would be great if you can share orignal site url. So, I can check it properly.
When I get a 307 in my browser, it’s because my domain is on the HSTS preload list used by many browsers, so the browser knows to automatically rewrite/redirect to https if I just typed in the domain name.
An HSTS redirect would be from http to https. Google treats http and https as different properties. If you are checking the right property under Google Search Console, you should be testing for https://(www.)example.com, and therefore not see this message. Are you not checking the wrong property (http:// instead of https://) by mistake??
Checked with https and getting this error. I am not sure is this main problem why google doesn’t index pages properly.
Please see first post. I am suspecting that is problem with CloudFlare configuration because, the website dropped when Under Attack mode was activated.
When you enable “I am under attack”, Search Engine bots cannot discover your web page.
If you do inspect URL via Search Console you will see some 5XX response. Clearly means, a Search Engine bots cannot access the web page.
As a workaround, you can have a whitelist rule.
Caution! This is a little compromise to the effectiveness of I am under attack mode. If you have sometime, please find IP ASN of Search Engine, trusted entity and do whitelisting accordingly.
Now, when Under Attack mode is deactivated i am getting a page with redirect 307 and it refers to another language version of the page. And also getting canonical what is not declared by myself.
Look at the image, please!
Actually, Cloudflare blog on I’m Under Attack mode states that known search engines are whitelisted by default. Whatever is blocking Google crawler is probably some other rules (IP Access, User Agent Blocking, Firewall Rules, WAF etc) or some configuration at the origin server.
We’ve also designed the new checks to not block search engine crawlers, your existing whitelists, and other pre-vetted traffic. As a result, enabling I’m Under Attack Mode will not negatively impact your SEO or known legitimate visitors.
@buco0204, do you have any page rules enabled on your site? Could you post a screenshot (after obfuscating your domain/IP as needed)?
Also, since you mentioned a language-related redirect, perhaps you should make use of an online tool that checks for redirects, as it sometimes happen that redirects created by plugins are not properly disabled when we remove the plugin.
Never mind. I was just speculating that you may be using some of the popular language plugins for WordPress, as I know from experience that both Polylang and WPML may leave redirects they create even after the plugin removal.
But then you’d need to investigate what is causing this language redirect, certainly not something Cloudflare would do.
Caution! This is a little compromise to the effectiveness of I am under attack mode. If you have sometime, please find IP ASN of Search Engine, trusted entity and do whitelisting accordingly.
