It looks like if you whitelist a country, but then js_challenge a certain IP address coming from that country, the whitelist takes precedence.

Cloudflare rolled out something special today:

Firewall rules are limited to 20 (in the Pro plan), while there’s no limit on the number of rules in “IP Firewall”. Alas, it has a design flaw. More specific rules should override general ones. An IP address rule should definitely match before country or AS rules.

You probably don’t want to whitelist a country…

This topic was automatically closed after 30 days. New replies are no longer allowed.