You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/waf/troubleshooting/faq.mdx
+14-18Lines changed: 14 additions & 18 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -30,31 +30,27 @@ If you are using a regular expression, it is recommended that you test it with a
30
30
31
31
If you have [SSL/TLS certificates](/ssl/) managed by Cloudflare, every time a certificate is issued or renewed, a [domain control validation (DCV)](/ssl/edge-certificates/changing-dcv-method/dcv-flow/) must happen. When a certificate is in `pending_validation` state and there are valid DCV tokens in place, some Cloudflare security features such as [custom rules](/waf/custom-rules/) and [Managed Rules](/waf/managed-rules/) will be automatically disabled on specific DCV paths (for example, `/.well-known/pki-validation/` and `/.well-known/acme-challenge/`).
32
32
33
-
### Why is Cloudflare blocking a specific IP address?
34
33
35
-
Cloudflare may block an IP address due to various reasons:
34
+
### Why have I been blocked?
36
35
37
-
-**Security mitigation actions**: Cloudflare protects websites from various online threats, including malicious traffic, DDoS attacks, and common vulnerabilities. If your IP address is associated with suspicious or malicious activity, it might trigger a security check and block requests.
36
+
Cloudflare may block requests when it detects activity that could be unsafe. Common reasons include:
38
37
39
-
-**High security settings**: The website owner might have set their Cloudflare security settings to a high level, making the filtering of incoming traffic stricter. In this situation, even legitimate users may get blocked or have to solve challenges.
38
+
- Security protection against malicious traffic, DDoS attacks, or other threats.
39
+
- Excessive requests in a short time (rate limiting).
40
+
- Bot-like or automated traffic.
41
+
- IP addresses listed on public blocklists, such as [Project Honey Pot](https://projecthoneypot.org/).
40
42
41
-
-**Excessive requests**: Cloudflare may block an IP address if it detects an unusually high number of requests in a short period, in which case it will rate limiting subsequent requests. This is a protective measure against potential abuse or attacks.
43
+
If you are a site visitor:
42
44
43
-
-**Traffic from malicious bots**: Cloudflare employs bot detection mechanisms to distinguish between legitimate users and automated bots. If traffic from your IP address behaves like traffic from a malicious bot, it could get blocked.
45
+
- Contact the site owner, providing details of your actions when the block occurred and the Cloudflare Ray ID displayed at the bottom of the error page.
46
+
- Avoid suspicious inputs or automated scripts.
47
+
- Check your IP reputation through [Project Honey Pot](https://projecthoneypot.org/).
44
48
45
-
-**Blocklisted IPs**: Cloudflare might block IP addresses listed on public blocklists due to their association with known malicious activities.
49
+
If you are the site owner:
46
50
47
-
If your IP address is blocked, try the following:
48
-
49
-
-**Check Cloudflare Security Events**: Use the [Security Events](/waf/analytics/security-events/) log to check for specific reasons your IP might be getting blocked. Look for details on the type of threat or activity that triggered the block.
50
-
51
-
-**Contact the website owner**: If you are a legitimate user and your IP is wrongly blocked, contact the website owner or administrator. They may be able to allowlist your IP or investigate the issue further.
52
-
53
-
-**Verify your own website traffic**: Check for abnormal activity. If you manage a website behind Cloudflare, ensure that your site's traffic is legitimate and not triggering security measures inadvertently.
54
-
55
-
-**Check your IP reputation**: Verify whether your IP address is listed on public blocklists, such as [Project Honey Pot](https://projecthoneypot.org/). If so, take steps to address any issues that may have led to the listing.
56
-
57
-
-**Adjust your security settings**: If you are a website owner using Cloudflare, consider adjusting security settings to find the right balance between protection and accessibility.
51
+
- Adjust security settings to balance protection with accessibility.
52
+
- Monitor blocked requests in your Cloudflare dashboard.
53
+
- Allowlist trusted IPs or fine-tune WAF/bot rules to reduce false positives.
0 commit comments