Have you searched for an answer?
Describe the issue you are having:
We have several pfSense firewall guis that should only be accessible from specified IP addresses. We have a simple allow / deny WAF config (below) that has been working fine but recently noticed that 1. successful access attempts aren’t being logged in Cloudflare firewall events - access logs and more importantly 2. mobile phones can get through the WAF policy even though that are not on allow list.
What steps have you taken to resolve the issue?
- Confirmed access from allowed IP, confirmed no access from PC/MAC on several different networks have no access, presented a Cloudflare
- Confirmed DNS on mobile phone for pfsense firewalls are returning Cloudflare IPs as expected but still allowed access
Was the site working with SSL prior to adding it to Cloudflare?
What are the steps to reproduce the error:
- Access site from allowed IP works
- Access from other networks fail, except from mobile phones for some reason
Have you tried from another browser and/or incognito mode?
Please attach a screenshot of the error: