3 replies

WAF rules based on managed lists

We are using Cloudflare managed lists on the Enterprise subscription. The Cutom Rule is quite simple and are supposed to block visitors from using Proxies, VPNs and Anonymizers. Actually, it looks like this:

(ip.src in $cf.anonymizer) or (ip.src in $cf.open_proxies) or (ip.src in $cf.vpn)

(ip.src in $cf.anonymizer) or (ip.src in $cf.open_proxies) or (ip.src in $cf.vpn)

But I tried it with more than 70 different locations using HMA, NordVPN and MulvadVPN. Not a single IP was blocked by the rule.
Did someone else face anything similar?

WAF rules based on managed lists

Similar Threads

WAF rules based on managed lists

Similar Threads

Similar Threads

Similar Threads