I just started using Cloudflare to redirect (301) traffic from multiple dating domains I have to offers on dating networks to try and stop all the bot traffic which is messing up my stats. All the bots are trying common pages like mydomain/wp, mydomain/wordpress, mydomain/xmlrpc etc. which don’t exist. I read up that just using WAF that replaced the firewall rules would block these, but it’s still not working.
What steps have you taken to resolve the issue?
I have Full (Strict) SSL/TLS and set the rules as shown in the screenshots. But the bots are still getting through. I’m on the Cloudflare Free Plan.
Thank you for your quick reply, I have Full (strict) SSL/TLS enabled. But maybe not proxied as you suggested, could you please link to the instructions on how to do this, or please tell me?