Where to enter my IP address in WAF to bypass the phpmyadmin blocking

Website, Application, Performance Security
1

I just got Cloudflare with my hosting. It’s the pro plan, and it’s my first time using it.

My issue is that when I try to go to my website’s phpmyadmin and upload a SQL backup, I always get blocked by the Ray ID on my main domain.

I am just trying to figure out where to allow my specific IP address.
I found the WAF IP access rules, but there I cannot enter my IP address; I can only choose countries.

How can I bypass this with my own domain while I am working on my website?

2

The safest way to allow your IP is by creating a WAF Exception for the rule that is blocking your requests, or the whole ruleset which contains that rule.

First you visit Security > Events and search for events containing your IP. Then you copy the rule ID string (if you hover your mouse pointer over the rule ID, you’ll see a “copy” link).

Then:

4

You know the issue I have is that when I follow the these steps:

o add a Web Application Firewall (WAF) exception in Cloudflare for a specific rule ID to not block your IP address, you need to create a Firewall Rule that allows traffic from your IP address and bypasses the specific WAF rule. Here’s how you can do that:

  1. Log in to your Cloudflare account and select the appropriate domain for which you want to add the exception.
  2. From the menu at the top, click on “Firewall.”
  3. In the “Firewall” section, click on the “Firewall Rules” tab.
  4. Click on the “Create a Firewall rule” button.
  5. Enter a descriptive name for the rule (e.g., “Bypass WAF for my IP”).
  6. In the “Field” dropdown, select “IP Address.” For the “Operator,” select “Equals,” and in the “Value” field, enter your IP address.
  7. Click on the “AND” button to add another condition.
  8. In the “Field” dropdown, select “WAF Rule ID.” For the “Operator,” select “Equals,” and in the “Value” field, enter the specific rule ID you want to bypass (e.g., “100000”).
  9. In the “Choose an action” section, select “Bypass” from the dropdown menu.
  10. In the “Bypass” settings, check the box next to “Web Application Firewall.”
  11. Finally, click on the “Deploy” button to create and activate the firewall rule.

At number 7 there is no option for WAF Rule ID

5

We’re talking 2 different versions of the exception/bypass mechanism. You seem to be following instructions for the WAF (Previous Version), while I suggested an Exception for the new WAF.

Please go to Security Events and check in the event what service is blocking your requests, whether WAF or WAF (Previous Version).

6

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.