I had started that thread earlier and it did still not work for me.

So basically I have a site “abc.com”.

the trouble I am having is at “xyz.abc.com/path/pathaction” user getting blocked by several OWASP rules.

I was advisied bypasssing waf for this and used full URI path:xyz.abc.com/path/pathaction WAF bypass but did not work for my user. I was also advised bypassing security level bypass. After enabling I noticed there is other paths bypassed and just want to confirm I am not missing anything.

My original attempt was keeping the posture as high as possible by disabling specific rule for specific URL but cloudflare I does not have that capability I am told. Any advice is appreciated.

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.