block everything except one country

Hello, I'm currently using the zero trust tunnel with the free security function and would like to use the custom rules to block all IPs except Germany in one or two rules, if that's possible
23 Replies
Erisa
Erisa4w ago
you can use one rule by taking advantage of "does not equal"
No description
Erisa
Erisa4w ago
if you want to add another country, change it to "is not in" and then add to the list
No description
SnakeEater96
SnakeEater964w ago
thankyou Can UDP packets be chased over the tunnel? If so, how @Erisa ?
Chaika
Chaika4w ago
Would need to use Private Networking and install WARP on the client who wants to connect device ?tunnel-tcp
Flare
Flare4w ago
Cloudflare Tunnels use Cloudflare's proxy, which only supports proxying HTTP Traffic. If you want to use non-http applications over your tunnel, Cloudflare has a few other options: For a few specific protocols such as SSH, RDP, and SMB, Cloudflare has guides for them here: https://developers.cloudflare.com/cloudflare-one/applications/non-http/ For Arbitrary TCP like Minecraft, MySQL, and any other tcp application, Cloudflare has a guide here: https://developers.cloudflare.com/cloudflare-one/applications/non-http/arbitrary-tcp/ For Arbitrary UDP like Minecraft Bedrock, SMTP, and any other udp application, you will need to use Private Networking with WARP: https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/private-net/connect-private-networks/ Please note for all of these except SSH and VNC which can be browser-rendered, you will either need to use cloudflared (Cloudflare's tunnel daemon) on the client machine running in the background or Private Networking with WARP, and have WARP installed on the client machine logged into your Zero Trust Team.
SnakeEater96
SnakeEater964w ago
Can I also use a rule to reduce brute force attacks? @Erisa
Erisa
Erisa4w ago
Make a rate limiting rule
SnakeEater96
SnakeEater964w ago
how @Erisa
Cyb3r-Jak3
Cyb3r-Jak34w ago
Cloudflare Docs
Create in the dashboard for a zone | Cloudflare Web Application Fir...
When you select the Block action in a rule you can optionally define a custom response.
SnakeEater96
SnakeEater964w ago
I can't get it to work somehow, what needs to be entered?
No description
Cyb3r-Jak3
Cyb3r-Jak34w ago
I mean what are you trying to ratelimit? Free plan can only rate limit per path or by bot
SnakeEater96
SnakeEater964w ago
so I can't minimize brute force with this
Cyb3r-Jak3
Cyb3r-Jak34w ago
I mean yeah. That's what rate limit is for, to stop a lot of requests
SnakeEater96
SnakeEater964w ago
That's why I'm wondering whether I can use the free version to counteract brute force
Cyb3r-Jak3
Cyb3r-Jak34w ago
Any you can, but free version only is able to filter on path and verified bot so if you need more than that then you can't on free plan.
Want results from more Discord servers?
Add your server