Hey,
We use a third party security company to scan our website for PCI compliance. During the scans they are saying the requests to the non-standard website ports that Cloudflare has open are taking up to 30 seconds to respond. With the amount of requests the scan makes, its taking days to get through one port. The ports are listed here: https://developers.cloudflare.com/fundamentals/get-started/reference/network-ports/ (other than 80 and 443).
I’ve tried adding a WAF rule to block those ports other than 80 and 443 using this:
not (cf.edge.server_port in {80 443})
However that doesn’t seem to have solved the issue. Is there any throttling that might be occurring on Cloudflare’s side or is this something we have to reach out to our webhost about?
Thanks