Website cannot be indexed on Google


Hello to everyone,

i’m getting issues to index my website/domain on google SERP, i tried also to add it on Search console but without successfull.
I’ve added sitemap 2 weeks ago and it’s till in “couldn’t fetch” status.
So yesterday i’ve tried “URL INSPECTION” tool and i get “URL is not on Google”, so i requested an indexing and got also that message " Indexing request rejected

During live testing, indexing issues were detected with the URL" Server error (5xx)

i’ve also Cloudflare WaF active… anyone can help me to index my website?


Hi @nicola.mazzoccoli61, can you share the domain in question?


i’ve solved partially the problem, i’ve disabled JS challenge on Firewall rule.
For the moment i’ve not an high traffic… but i should turn it on again when my website it’s indexed?

Or maybe i’ve wrote Rule wrong?


( eq “” or eq “”) and not http.request.uri.path contains “/billing/modules/servers/licensing/verify.php” and not http.request.uri.path contains “/billing/modules/gateways/callback/paypalnew.php” and not http.request.uri.path contains “/billing/modules/gateways/callback/paypal.php”


@cloonan do you now how to fix that Js challenge rule?


For starters, your two host equality checks can be shortened to in {"" ""}

Second, what exactly is that rule for? Does it allow or block? Do you have a particular reason why you check for the hostnames?


@sandro I really don’t know, a guy who installed cloudflare js challenge has write that, but now he doesn’t know how to help me with that rule.
Of course the problem was JS challenge becouse now I’ve turn it off and google can crawl successfully my website. But i would like to turn it on again to be more safe… what can i write on that rule?

I suppose that how he wrote before…
and /billing/modules/servers/licensing/verify.php
Should be an exeption…?


Without knowing what is supposed to happen and why that rule is in place it is difficult to say something.


@sandro , i really don’t know… maybe i would have firewall active on all my /billing paths, can you tell me which rule i should write?


I don’t think a js challenge would come through as 5xx error.

You should not be trying to get secured pages indexed in google. Do any other pages on the site get indexed?


@jules when i disabled JS challenge , google, etc… they have succeded to crawl my webpage… so Js challenge was the problem.
today I had to reactivate it, because I received another bruteforce attack on my paths… ( a spam of request that force my VPS PU to 100%)
Maybe now google isn’t able anymore to crawl my website… so i was thinking to add JS challenge only on /billing folders into my website.

my actual rule is that:
( eq “” or eq “”) and not http.request.uri.path contains “/billing/modules/servers/licensing/verify.php” and not http.request.uri.path contains “/billing/modules/gateways/callback/paypalnew.php” and not http.request.uri.path contains “/billing/modules/gateways/callback/paypal.php”

what about if i replace " “” or eq “”" with “” or eq “”

forgive me if I’m writing nonsense things… but I’m not practical at all


A wildcard should work:

http.request.uri.path ~ “^/billing$”

Leave out the hosts. Give that a try and let us know.


won’t work work, i’ve also tried to write "( eq “” or eq “”) but wouldn’t work too…
maybe i should find on of theese ways:
1- don’t let JS challenge to block google crawler
2- use JS challenge only on /billing paths (but we don’t know what write on rule…)


What I posted above should be the entire rule. No hosts. Is that what you tried?


yes i tried both, the rule i wrote before and only this:

http.request.uri.path ~ “^/billing$”

but with that rule i get a red error , and cannot save


Regex firewall rules are only available on Business Plan and up.


For what it seems you want to accomplish, based on the initial post, you could just enable “I’m under attack” mode on Dashboard > Firewall > Settings.

Then you should create a few page rules for the desired paths, with a setting “Security Level: High”. You could create one per URL or it could be just one page rule for the whole /billing/ path:

Security Level: High

“I’m under attack” mode bypasses Google and other search engine by default. Also, it does not generate a Firewall Events log entry for each request, something a Firewall Rule will do.

However, any attempt to JS Challenge all visitors, either via the IUA mode or firewall rules is sure to annoy your visitors. Appeasing Google to attract visitors should not be your main goal. Since this seems to be a new website, I’m not sure why it would warrant a “challenge all” approach, especially in a moment when the website is being first launched.

I’d rather create behavior-based firewall rules to block suspicious activities. For that, you should get acquainted the Firewall documentation to get a better understanding of what each action does, how to properly combine conditions etc.


Not working yet,
what about to add: “and not”

Something like that…?

( eq “” or eq “”)
and not

closed #20

This topic was automatically closed after 14 days. New replies are no longer allowed.