Wordpress REST API error 403

Hello, I enabled under attck mode on my wordpress site and got REST API error 403
If I disabel Under atack mode, everything is fine.

But site is under atack. But now I have problems posting and saving drafts. How can I solve this?

(403) <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Please Wait... | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> <script> //<![CDATA[ (function(){ window._cf_chl_opt={ cvId: "2", cType: "managed", cNounce: "88638", cRay: "xxxxxxxx", cHash: "xxxxxxxxxxx", cUPMDTk: "\/wp-json\/wp\/v2\/types\/post?context=edit&__cf_chl_tk=v6rdl4vCinMU_.qHCeYeqOBrrl_SfebEvurYudvzqic-1653485703-0-gaNycGzNCv0", cFPWv: "g", cTTimeMs: "1000", cLt: "n", cRq: { com: "aHR0cHM6Ly9mb3Jwb3N0c2V2YXN0b3BvbC5ydS93cC1qc29uL3dwL3YyL3R5cGVzL3Bvc3Q/Y29udGV4dD1lZGl0", ra: "V29yZFByZXNzLzYuMDsgaHR0cHM6Ly9mb3Jwb3N0c2V2YXN0b3BvbC5ydQ==", rm: "R0VU", d: "h/pEk/91wTUBu7qtU8Id9MbeTZ+4H1hWJ1zWBKXcF8H8UkYli2+4gsK1vz4OwFkXkB0WwZpmi5dawlcwLGTivaW0GtyT7fZnp/H1ok8dk1+S0vR/OddKBOhj3O5GrR0rhGFbylpX9eLvWzQEABnzEGeawDoYIZjVrL4iYE6jqXAIXvxbijWYU2XgNDTjVBBbPlejWnEli6eFFSst5BGwMBLgsoXArU6nP57c6TkfkktKAf1Pzisl7ZIQtczsYlX5IsrotExLUnANovYy2q1HP/bRC1YLZuF25WnoRp8nb9Q2+vXgbJWzcLbeqQUat8Xb9XCyKZKZJut8/xST+D/Dge3JWNvfLeNZMvkR4cRdJs6B5cwTmxolS3w6FPU6mHJAxmKuHef3FmV9Rb62qOe8d+p7NQ+xqCyWX0dXhZMW8dtxhW36nNky+g9Ubv8JnXWVRsMj92bZJw+eEwMnTuoSuA2NuY63eWBS8IEvHx6etjtVgPwAXJpCXsm6mTYGlZtAfyS5zmSw57n1Jh0cWxAcUCZ+Vq8hgCre26Egn5DouKgV1IAtH+MVDhseCms4QoaKmfo7uMdF6CwPBioGsr0Td/s5TMSMavviicEAEK9jwMn6uyi+eWAn+dsTo/PNtBJ4", t: "MTY1MzQ4NTcwMy4yMDgwMDA=", m: "6zK1LxdN/3129g73jSKw3Gav35dINUHPLfqacqT5jOU=", i1: "sWIUKfyUnkHRgptz398KTg==", i2: "UcH64TtDm0Q3njCuEa2eOg==", zh: "AF31SdJULdHoJxBO5c7536ukMgJbmsBcYqgmCk1Sw7k=", uh: "/qmJ5kCpms5CvMtm22peF0tB4qgoiWUJJ/8goK1+Jgs=", hh: "jUE/4PfPPhFbeBgevVl++U/ydGXb7xw4m8dJFt/y2JU=", } }; }()); //]]> </script> <style> #cf-wrapper #spinner {width:69px; margin: auto;} #cf-wrapper #cf-please-wait{text-align:center} .attribution {margin-top: 32px;} .bubbles { background-color: #f58220; width:20px; height: 20px; margin:2px; border-radius:100%; display:inline-block; } #cf-wrapper #challenge-form { padding-top:25px; padding-bottom:25px; } #cf-hcaptcha-container { text-align:center;} #cf-hcaptcha-container iframe { display: inline-block;} @keyframes fader { 0% {opacity: 0.2;} 50% {opacity: 1.0;} 100% {opacity: 0.2;} } #cf-wrapper #cf-bubbles { width:69px; } @-webkit-keyframes fader { 0% {opacity: 0.2;} 50% {opacity: 1.0;} 100% {opacity: 0.2;} } #cf-bubbles > .bubbles { animation: fader 1.6s infinite;} #cf-bubbles > .bubbles:nth-child(2) { animation-delay: .2s;} #cf-bubbles > .bubbles:nth-child(3) { animation-delay: .4s;} </style> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="managed_challenge_headline">Please wait...</h1> <h2 class="cf-subheadline"><span data-translate="managed_checking_msg">We are checking your browser...</span> xxx.com</h2> </div> <div class="cf-section cf-highlight cf-captcha-container"> <div class="cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <div class="cf-highlight-inverse cf-form-stacked"> <form class="challenge-form managed-form" id="challenge-form" action="/wp-json/wp/v2/types/post?context=edit&__cf_chl_f_tk=v6rdl4vCinMU_.qHCeYeqOBrrl_SfebEvurYudvzqic-1653485703-0-gaNycGzNCv0" method="POST" enctype="application/x-www-form-urlencoded"> <div id='cf-please-wait'> <div id='spinner'> <div id="cf-bubbles"> <div class="bubbles"></div> <div class="bubbles"></div> <div class="bubbles"></div> </div> </div> <p data-translate="please_wait" id="cf-spinner-please-wait">Please stand by, while we are checking your browser...</p> <p data-translate="redirecting" id="cf-spinner-redirecting" style="display:none">Redirecting...</p> </div> <input type="hidden" name="md" value="_iGPTT6kRVq3cgCarNypN_iGavvauf3Wt7i_L_HiQIU-1653485703-0-Aam8VUHCNVI4qNgeOXQQlPfMPKvb7lITWkU3SDSZTV4wcdVJEtweM6-teRebSFTUIq0R6Z5fCyoXCHaayG2YB72wkYdn8s_xJRYenBQOI53XlgFSN1FEu4kQk5o05YPP4R9yqElmvQRi-41z-wmHTR_wCboRhvlWPNJbyg6Cdhxb7bUFeexFa8m4yq8MTXSCsgdwuGBBgb5T6pU-W2c6MB1xvVKY_YFyc-oFhQx-IeX9irv-1rLtuWgNzDhzy_tC0IUi3Ex-w5Kskz8DIgOdEOWxNbk624xxPyNaEN0A6Yk4NExL7qSbtFLbRBHUujqHg1meogKfqkFrcylkZlujwtiPzCYzIQpseuxeKdDlW5JLFZ9OmeDROzk6CWdZvceNg0TD7fVRlF25YoGHMmKIVcYh9gX04znq2ionKI1I8x0fxpeCkzyIU9XgRYeaeCbVbsFH4-trj_kvMHexyu4sLOU7rcZracf0ezwypIyuV2Zk0ngB9Xavnkf6lqKYK2cx1ZsbyFH6szkN0zTV4UQTDIgc3kt-X8z90F3w2tPdprxvj0GWTg6fCSjocR7GPFw2vKdxuef9YX-_2kOzI744OlfJ_tbpfXvr-fpVc6AAbx-zB5zRDnflk9vNo6gMATh03-pomzapr8DsimgSR9Fmr1Uan91iO_BsSNHgQzIeLHglFSh6WoVh-BZFDVhp98cp9JITL_czP9utDANNmrlRKoLKMv_nD93sHcexTXA2jhLu4KVdJ6GV-8fv9W6sXY5rb0ri1y88M0J-IjpmD8UHL5eT8Oo4kfdIlMxawcRLqkcz2FFmxGtyLax9UIcyBOA8cItdeBHU8xCJvzQDOtMOYhwFvB-hEoUkuVcJHw_RA2TmtqbJcTo62fw5pWgz7vdhmGWOCG6BLCBOvpdBTYJpe5o" /> <input type="hidden" name="r" value="3DGbV.RPsSRTrNghmNR0j6imI8C28i9Fa2dC293ISA4-1653485703-0-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"> <input type="hidden" name="vc" value="e772235376a0fb4157fdaa3d3909e88a"> <noscript id="cf-captcha-bookmark" class="cf-captcha-info"> <h1 data-translate="turn_on_js" style="color:#bd2426;">Please turn JavaScript on and reload the page.</h1> </noscript> <div id="no-cookie-warning" class="cookie-warning" data-translate="turn_on_cookies" style="display:none"> <p data-translate="turn_on_cookies" style="color:#bd2426;">Please enable Cookies and reload the page.</p> </div> <script> //<![CDATA[ var a = function() {try{return !!window.addEventListener} catch(e) {return !1} }, b = function(b, c) {a() ? document.addEventListener("DOMContentLoaded", b, c) : document.attachEvent("onreadystatechange", b)}; b(function(){ var cookiesEnabled=(navigator.cookieEnabled)? true : false; if(!cookiesEnabled){ var q = document.getElementById('no-cookie-warning');q.style.display = 'block'; } }); //]]> </script> <div id="trk_captcha_js" style="background-image:url('/cdn-cgi/images/trace/captcha/nojs/h/transparent.gif?ray=710ea6ed0c3b2486')"></div> </form> <script> //<![CDATA[ (function(){ var isIE = /(MSIE|Trident\/|Edge\/)/i.test(window.navigator.userAgent); var trkjs = isIE ? new Image() : document.createElement('img'); trkjs.setAttribute("src", "/cdn-cgi/images/trace/managed/js/transparent.gif?ray=710ea6ed0c3b2486"); trkjs.id = "trk_managed_js"; trkjs.setAttribute("alt", ""); document.body.appendChild(trkjs); var cpo=document.createElement('script'); cpo.type='text/javascript'; cpo.src="/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=710ea6ed0c3b2486"; window._cf_chl_opt.cOgUHash = location.hash === '' && location.href.indexOf('#') !== -1 ? '#' : location.hash; window._cf_chl_opt.cOgUQuery = location.search === '' && location.href.slice(0, -window._cf_chl_opt.cOgUHash.length).indexOf('?') !== -1 ? '?' : location.search; if (window._cf_chl_opt.cUPMDTk && window.history && window.history.replaceState) { var ogU = location.pathname + window._cf_chl_opt.cOgUQuery + window._cf_chl_opt.cOgUHash; history.replaceState(null, null, "\/wp-json\/wp\/v2\/types\/post?context=edit&__cf_chl_rt_tk=v6rdl4vCinMU_.qHCeYeqOBrrl_SfebEvurYudvzqic-1653485703-0-gaNycGzNCv0" + window._cf_chl_opt.cOgUHash); cpo.onload = function() { history.replaceState(null, null, ogU); }; } document.getElementsByTagName('head')[0].appendChild(cpo); }()); //]]> </script> </div> </div> <div class="cf-column"> <div class="cf-screenshot-container"> <span class="cf-no-screenshot"></span> </div> </div> </div> </div> </div> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="why_captcha_headline">Why do I have to complete a CAPTCHA?</h2> <p data-translate="why_captcha_detail">Completing the CAPTCHA proves you are a human and gives you temporary access to the web property.</p> </div> <div class="cf-column"> <h2 data-translate="resolve_captcha_headline">What can I do to prevent this in the future?</h2> <div style="display: none;"><a href="https://lagungroen.com/telephonequinquenni.php?url=9937">table</a></div> <p data-translate="resolve_captcha_antivirus">If you are on a personal connection, like at home, you can run an anti-virus scan on your device to make sure it is not infected with malware.</p> <p data-translate="resolve_captcha_network">If you are at an office or shared network, you can ask the network administrator to run a scan across the network looking for misconfigured or infected devices.</p> </div> </div> </div> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">710ea6ed0c3b2486</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span class="cf-footer-item sm:block sm:mb-1"><span>Your IP</span>: xxxxxxx</span> <span class="cf-footer-separator sm:hidden">•</span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> </div><!-- /.error-footer --> </div> </div> <script> window._cf_translation = {}; </script> </body> </html>

Create a “Allow” rule

Login to Cloudflare Dashboard > Security > Waf > Firewall rules

what should I allow?

My best guess, your web hosting / server IP.

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.