Suddenly started getting complaints that users were getting ‘blocked’. Upon reviewing my cloudflare security logs (Firewall > Overview > Firewall Events), I see that there are a ton of “WAF” and “Hotlink Protection” blocks. Usually was getting 5 blocks a minute, now up to 30+ blocks a minute. No changes have been made to any cloudflare settings in months.
Complaints come from legitimate users and I was able to duplicate the WAF error in firefox, but not in Chrome (they were using all browsers on all platforms). Not able to duplicate the Hotlink Protection error.
I have had to now shut off the WAF - and I am looking to shut off hotlink protection as well.
Any reason why these ‘blocks’ would have suddenly increased very recently?