6 replies

How can we set IP Access Rules?

The Bot Fight Mode docs (https://developers.cloudflare.com/bots/get-started/bot-fight-mode/#limitations) say

Limitations
You cannot bypass or skip Bot Fight Mode using the Skip action in WAF custom rules or using Page Rules. Skip, Bypass, and Allow actions apply to rules or rulesets running on the Ruleset Engine. While Super Bot Fight Mode rules are implemented in the Ruleset Engine, Bot Fight Mode checks are not. This is why you can skip Super Bot Fight Mode, but not Bot Fight Mode. If you need to skip Bot Fight Mode, consider using Super Bot Fight Mode.

Bot Fight Mode can still trigger if you have IP Access rules, but it cannot trigger if an IP Access rule matches the request. For example, the IP Access rule matches the connecting IP

But I can't find IP Access Rules anywhere in the dashboard. Those docs (https://developers.cloudflare.com/waf/tools/ip-access-rules/create/) say

IP Access Rules are only available in the new security dashboard if you have configured at least one IP access rule. Cloudflare recommends that you use custom rules instead of IP Access Rules.

Log in to the Cloudflare dashboard , and select your account and domain.

Go to Security > Security rules.

Select Create rule > IP access rules.

Enter the following rule details:

For IP, IP range, country name, or ASN, enter an IP address, IP range, country code/name, or Autonomous System Number (ASN). For details, refer to Parameters.
For Action, select an action.
For Zone, select whether the rule applies to the current website only or to all websites in the account.
(Optional) Enter a note for the rule (for example, Payment Gateway).
Select Create.

When I follow those steps I dont see IP access rules (see screenshot). Presumably this is because I dont have an existing IP Access Rule that is "grandfathered in"?

Anyone have any suggestions? Bot Fight is blocking legitimate traffic.

How can we set IP Access Rules?

The Bot Fight Mode docs (https://developers.cloudflare.com/bots/get-started/bot-fight-mode/#limitations) say

Limitations
You cannot bypass or skip Bot Fight Mode using the Skip action in WAF custom rules or using Page Rules. Skip, Bypass, and Allow actions apply to rules or rulesets running on the Ruleset Engine. While Super Bot Fight Mode rules are implemented in the Ruleset Engine, Bot Fight Mode checks are not. This is why you can skip Super Bot Fight Mode, but not Bot Fight Mode. If you need to skip Bot Fight Mode, consider using Super Bot Fight Mode.

Bot Fight Mode can still trigger if you have IP Access rules, but it cannot trigger if an IP Access rule matches the request. For example, the IP Access rule matches the connecting IP

But I can't find IP Access Rules anywhere in the dashboard. Those docs (https://developers.cloudflare.com/waf/tools/ip-access-rules/create/) say

IP Access Rules are only available in the new security dashboard if you have configured at least one IP access rule. Cloudflare recommends that you use custom rules instead of IP Access Rules.

Log in to the Cloudflare dashboard , and select your account and domain.

Go to Security > Security rules.

Select Create rule > IP access rules.

Enter the following rule details:

For IP, IP range, country name, or ASN, enter an IP address, IP range, country code/name, or Autonomous System Number (ASN). For details, refer to Parameters.
For Action, select an action.
For Zone, select whether the rule applies to the current website only or to all websites in the account.
(Optional) Enter a note for the rule (for example, Payment Gateway).
Select Create.

How can we set IP Access Rules?

How can we set IP Access Rules?

Similar Threads

Similar Threads

Similar Threads