We would like to write a Firewall Rule that describes a special situation. A specific Host or a specific IP address or a combination of a few different attributes. We will give this firewall rule the action Allow.
Our question is this… When the Firewall Rule is triggered with the action Allow, will it override one of Cloudflare’s Managed Rules that is set to Block?
In other words, if both a Managed Rule fires that indicates Block and a Firewall Rule fires and indicates Allow for the same request, which will win? Will the request be Blocked or Allowed?
Similarly, will a Firewall Rule that says Allow override a Rate Limiting Rule that says Block? In my experience, it appears that this is so.
I can tell that an IP Block or Whitelist will always win no matter what other rules might indicate.
Can you prioritize the different types of rules? Here is my guess:
IP Access Rule
Cloudlfare Managed Rule (WAF)
Rate Limiting Rule
Is this documented anywhere?