imo the way Google and other big websites deal with attacks and such (at least against static assets

imo the way Google and other big websites deal with attacks and such (at least against static assets/non-abusable things like loading home pages) is the best, just absorbing them with capacity rather then trying to play a game of whack a mole. Cloudflare makes this possible pretty easily with caching, rate limiting rules and such, and then for bigger abusers you can serve challenges based on IP Rep and stricter rate limits on specific endpoints, accepting the fact that some bots/etc will always get through, make it a bit harder, but not hard enough to potentially give any real users too much of a hassle

CChaika imo the way Google and other big websites deal with attacks and such (at least a...

captain•10/15/23, 10:18 PM

i get that, but my opinion to add to that is that if Amazon has a bunch of fraudulent actors on their system, they could be doing alot more to remove them and report them to the FBI

captain•10/15/23, 10:18 PM

i have all the IP's that lead to a payment source and to a login of a user that they have access to

captain•10/15/23, 10:19 PM

they could then monitor the traffic, find other bots doing the same traffic and take it down

Original message was deleted

captain•10/15/23, 10:20 PM

don't they have to have a funding source?

Original message was deleted

captain•10/15/23, 10:21 PM

that might true...but that is still fraud that they could stop, the onus isn't on me or cloudflare, its on the company running the server

captain•10/15/23, 10:21 PM

its amazon's customer, and amazon's job to stop fraud

captain•10/15/23, 10:21 PM

if amazon is making MONEY on fraud...than they are culpable

Original message was deleted

captain•10/15/23, 10:22 PM

if I report 1 ip, they could investigate all the ips in that user's account

captain•10/15/23, 10:22 PM

and quickly see a pattern

captain•10/15/23, 10:23 PM

the same playbook is coming from 100s maybe 1000s of their ips

captain•10/15/23, 10:23 PM

as i watch my logs

Original message was deleted

captain•10/15/23, 10:23 PM

Wiretap is something done to a public utility...not in a server

captain•10/15/23, 10:24 PM

once that info leaves the datacenter if being monitored..then its a wiretap

captain•10/15/23, 10:24 PM

but from within their datacenter on their servers and their product

captain•10/15/23, 10:24 PM

yeah they can do that

Original message was deleted

captain•10/15/23, 10:25 PM

https is encrypting the content

captain•10/15/23, 10:25 PM

but they can see a post or a get url attempting to leave their facility

captain•10/15/23, 10:26 PM

not the body of the content

Original message was deleted

captain•10/15/23, 10:28 PM

how come isp's are?

captain•10/15/23, 10:28 PM

they can't see my internet traffic?

captain•10/15/23, 10:29 PM

they don't know what url i requested to see?

captain•10/15/23, 10:29 PM

then what's the point of 1.1.1.1

captain•10/15/23, 10:30 PM

or a vpn

captain•10/15/23, 10:31 PM

i thought there was a big fight over ISP's being able to check and monitor the website requests

captain•10/15/23, 10:32 PM

one other question...

captain•10/15/23, 10:32 PM

seeing ip's coming from Verizon business

captain•10/15/23, 10:32 PM

whats your guys stance on blocking those guys, without blocking business internet

captain•10/15/23, 10:32 PM

or is that in your list of ASN;s

captain•10/15/23, 10:34 PM

AS54538 palo alto networks getting in the game alot too

captain•10/15/23, 10:39 PM

https://www.ip-tracker.org/lookup.php?ip=45.61.166.53 leads to https://ipinfo.io/AS14956 which leads to https://host.io/routerhosting.com which leads to a bunch of domains with cloudflare as the nameserver...argg

45.61.166.53 IP Location: Las Vegas, United States US

IP 45.61.166.53, Hostname (Not set. Same as IP Address): 45.61.166.53, US IP Location: city Las Vegas, state Nevada, country United States

AS14956 RouterHosting LLC details - IPInfo.io

AS14956 autonomous system information: WHOIS details, hosted domains, peers, upstreams, downstreams, and more

routerhosting.com - host.io

routerhosting.com (hosted on cloudflare.com) details, including IP, backlinks, redirect information, and reverse IP shared hosting data

captain•10/15/23, 10:39 PM

arggg

captain•10/15/23, 10:40 PM

anyways...thanks for chatting...my gf doesn't give a crap about any of this, nice to know there are people that do lol

captain•10/15/23, 10:45 PM

Palo Alto is using google cloud and has their own ASN

captain•10/15/23, 10:45 PM

tricky

Original message was deleted

captain•10/15/23, 10:47 PM

its strange...they mix it up

captain•10/15/23, 10:50 PM

ie: one request:

dev_nginx.access.log.1:198.235.24.174 - - [14/Oct/2023:16:15:41 +0000] "GET / HTTP/1.1" 200 46892 "http://mydomain.com/" "-" "198.235.24.174" 329 1.867 "382712" "1.867" "santamonicasoul.com"

Then in another request:
nginx.access.log.1:198.235.24.174 - - [14/Oct/2023:06:13:10 +0000] "GET / HTTP/1.1" 301 0 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"

captain•10/15/23, 10:50 PM

i don't know anyways I'm gonna take a break from this, thanks to all that responded

captain•10/15/23, 10:52 PM

FINAL question...

captain•10/15/23, 10:52 PM

do you guys block: AS714 APPLE-ENGINEERING

captain•10/15/23, 10:52 PM

i'm seeing weird request from them...not sure if its real or not real, but a bunch of IP's will come from their ASN in a burst

captain•10/15/23, 10:53 PM

17.22.253.58, 17.22.237.250, 17.22.253.102, 17.22.245.47, 17.22.237.250, 17.22.245.32, 17.22.245.37

Original message was deleted

DarkDeviL•10/15/23, 11:28 PM

Does double-blocking appear more effective?

CTRL+F 14061, 63949 & 396982

Ccaptain do you guys block: AS714 APPLE-ENGINEERING

DarkDeviL•10/15/23, 11:30 PM

Just because one or more AS numbers are flooding me with garbage traffic, it doesn't necessarily mean that they are (or will be) flooding you, too. And vice versa.

There won't be a golden list that works (perfectly) for everyone at once.

borisk•10/16/23, 6:44 AM

I want redirect all isers from Bosnia from domain.com to domain.com/archive

if I use CF country redirect example worker: https://developers.cloudflare.com/workers/examples/country-code-redirect/
And visit domain.com/shop, it will not redirect me to domain.com/archive/shop, instad it will redirect me to just domain.com/archive.

Can you pleas help me update a code?

Country code redirect · Cloudflare Workers docs

Documentation for Cloudflare Workers, a serverless execution environment that allows you to create entirely new applications or augment existing ones …

Kasumi•10/16/23, 6:55 AM

Bborisk I want redirect all isers from Bosnia from domain.com to domain.com/archive i...

gonz•10/16/23, 7:43 AM

what does your code look like?

borisk•10/16/23, 8:16 AM

export default {
async fetch(request) {
/**

A map of the URLs to redirect to
@param {Object} countryMap*/const countryMap = {BA: "https://example.com/us",HR: "https://example.com/eu",};// Use the cf object to obtain the country of the request// more on the cf object: https://developers.cloudflare.com/workers/runtime-apis/request#incomingrequestcfpropertiesconst country = request.cf.country;if (country != null && country in countryMap) {const url = countryMap[country];return Response.redirect(url);} else {return fetch(request);}},};

Request · Cloudflare Workers docs

The Request interface represents an HTTP request and is part of the Fetch API.

VĘÑOM•10/16/23, 10:45 AM

i moved my host to new vps but the website still getting old ip when i checked in CMD command on windows, i already changed the IP on CloudFlare DNS records

VVĘÑOM i moved my host to new vps but the website still getting old ip when i checked i...

Cyb3r-Jak3•10/16/23, 1:26 PM

If your DNS records are proxied then you won’t see a difference from the client side as they will always point to Cloudflare IPs.

imo the way Google and other big websites deal with attacks and such (at least against static assets

Similar Threads

Similar Threads

Similar Threads