WAF Not blocking all traffic from trhe list of blocked countries

Website, Application, Performance DNS & Network
1

What is the name of the domain?

blueangelcare.com

What is the error number?

N/A

What is the error message?

N/A

What is the issue you’re encountering

I setup a WAF Rule to block all countries from accessing the site other than the US and the UK. I waited, purged cache and the blocking isnt working at all. I even tested it on my phone with a vpn with an IP adress fromcountry that should be blocked and it still doesnt work.

What steps have you taken to resolve the issue?

  • Removed caching plugin from wordpress to see if it was causing the issue (it wasn’t)
  • Checked if I set up the WAF rule correctly (I did)

What feature, service or problem is this related to?

I don’t know

2

May I ask you to share a screensot of this Custom Rule? :thinking:
Is it the only rule on the list?
Otherwise, is it the 1st from above on the list?

Are the DNS records related to your Website A or CNAME type, proxied and :orange: so the Custom WAF Rules would apply and work as expected?

Is it the particular URL https://blueangelcare.com/ or some admin area?

I can access it via :croatia: and see it, while I should be blocked by your statement of blocking anyone outside US and UK, correct?

Screenshot 2024-10-30 at 18-02-08 Home Blue Angel Care
Screenshot 2024-10-30 at 18-02-08 Home Blue Angel Care1917×1063 158 KB

3

Wow thank you for the fast response, sure thing here’s the screenshot:

image
image961×1123 34.1 KB

Yes you are correct, technically you should be blocked from visiting the website aswell.

4

I haven’t set anything up in the DNS records for the WAF Rule, Heres what my DNS records look like:

image
image1224×1071 63.5 KB

5

also I would like to add, it should be working for the entire site and not specifically for just he admin area of the website

6

Thank you for sharing your feedback information.

From the shared screenshot above, the A blueangelcare.com is not proxied :orange: , therefrom I am afraid security & performance rules cannot apply and work as expected.

But, the A record is pointed to 104.18.185.50 → which is Cloudflare IP. You’d get an error :thinking:

It also looks like you are pointing to a Managed WordPress (apparently “tam32p9qqi.wpdns.site”), and that they (your provider of the WordPress installation) are using Cloudflare to serve their traffic through the Cloudflare Proxy.

You might want to contact and check with your host provider for security, if they have configured their service (as a SaaS) to allow your domain to work when you are using Cloudflare.

Otherwise, I am afraid you’re out of luck here :man_shrugging:

7

How can i change that so that the security and performance rules work?

8

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.