cloudflare · ngayerie · May 21, 2025 · May 19, 2025
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 400
+source: null
+---
+
+## 400 Bad Request
+
+This error indicates that the client sent a request to the server that could not be understood or processed due to issues with the request itself.
+
+For more information, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+A `400 Bad Request` error occurs due to client-side issues, such as malformed request syntax, invalid request content, message framing problems, or deceptive request routing. For example, if the request contains a special character that is not properly [URL Encoded (or percent-encoded)](https://en.wikipedia.org/wiki/Percent-encoding), an `HTTP Error 400` will be returned.
+
+### Cloudflare-specific information
+
+If you encounter an HTTP error while using the [Cloudflare API](/api/), make sure that you are using the correct syntax, parameters, and body for your API call.
@@ -0,0 +1,21 @@
+---
+pcx_content_type: troubleshooting
+title: Error 401
+source: null
+---
+
+## 401 Unauthorized
+
+This error indicates that the request was not sent with the proper authentication credentials. The server requires authentication to process the request.
+
+For more details, refer to [RFC 7235](https://tools.ietf.org/html/rfc7235).
+
+### Common use cases
+
+A `401 Unauthorized` error occurs when the client fails to provide valid authentication credentials. The server responds with at least one challenge in the form of a `WWW-Authenticate` header field, as outlined in [section 4.1](https://datatracker.ietf.org/doc/html/rfc7235#section-4.1).
+
+If the client resends the request with the same credentials and the challenge remains unchanged, the server may return an entity to assist the client in identifying the correct credentials needed.
+
+### Cloudflare-specific information
+
+When encountering a `401` error while using the Cloudflare API, ensure that you are providing the correct authentication credentials (for example, [API tokens](/fundamentals/api/get-started/create-token/) or [keys](/fundamentals/api/get-started/ca-keys/)). Double-check that the credentials are active and properly formatted. If the error persists, refer to the `WWW-Authenticate` header in the response for guidance on resolving the issue.
@@ -0,0 +1,36 @@
+---
+pcx_content_type: troubleshooting
+title: Error 403
+source: null
+---
+
+## 403 Forbidden
+
+The `403 Forbidden` status code indicates that the client's request was understood by the server but cannot be fulfilled due to insufficient permissions to access the requested resource.
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+If you encounter a `403` error without the Cloudflare branding, this means that the error is being returned directly by the origin web server, not Cloudflare. This is typically related to permission rules set on your server. Common reasons for this error are:
+
+- Permission rules configured on the origin web server (for example, in an Apache `.htaccess` file).
+- Mod_security rules.
+- IP deny rules, such as blocking traffic from certain IP ranges. Make sure that [Cloudflare's IP ranges](https://www.cloudflare.com/ips) are not being blocked.
+
+### Cloudflare-specific information
+
+Cloudflare may serve `403` responses in the following scenarios:
+
+- **WAF rules**: The request violated a default WAF managed rule (enabled for all orange-clouded Cloudflare domains) or a custom WAF managed rule specific to your zone. For more information, refer to [WAF Managed Rules](/waf/managed-rules/).
+
+- **Security features**: A `403` response with Cloudflare branding in the response body may be triggered by:
+  - [WAF Custom or Managed Rules](/waf/) with the challenge or block action.
+  - [Security Level](/waf/tools/security-level/) settings, which default to Medium.
+  - [DDoS Protection](/ddos-protection/), which is enabled by default on zones onboarded to Cloudflare, IP applications onboarded to Spectrum, and IP Prefixes onboarded to Magic Transit.
+  - Most [1xxx Cloudflare error codes](/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/).
+  - The [Browser Integrity Check](/waf/tools/browser-integrity-check/).
+  - [Validation Checks](/waf/tools/validation-checks/).
+
+Cloudflare may also serve an unstyled `403` error page in specific cases. These errors are not logged because they occur early in Cloudflare's infrastructure, before domain configuration is loaded. An example is:
+
+- [SNI](https://www.cloudflare.com/learning/ssl/what-is-sni/): A `403` error is returned when the client sends a host that does not match the SNI (Server Name Indication).
@@ -0,0 +1,21 @@
+---
+pcx_content_type: troubleshooting
+title: Error 404
+source: null
+---
+
+## 404 Not Found
+
+The `404 Not Found` status code indicates that the origin server was unable to locate the requested resource. Typically, this means the host server could not find the resource. For a more permanent version of this error, the 410 Gone status code should be used.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+These errors typically occur when someone mistypes a URL on your site, when there is a broken link from another page, when a page that previously existed is moved or removed, or there is an error when a search engine indexes your site.
+
+These errors typically account for approximately 3% of total page views for a typical site. However, they often go untracked by traditional analytics platforms, such as Google Analytics. To improve user experience, website owners usually implement a custom 404 page to be displayed when this error is generated.
+
+### Cloudflare-specific information
+
+Cloudflare does not generate `404s` for customer websites, we only proxy the request from the origin server. If you encounter a `404` error on a Cloudflare-powered site, the issue lies with the origin server. In such cases, contact your hosting provider for assistance.
@@ -0,0 +1,21 @@
+---
+pcx_content_type: troubleshooting
+title: Error 405
+source: null
+---
+
+## 405 Method Not Allowed
+
+The 405 Method Not Allowed status code indicates that the origin server recognizes the requested resource but does not support the HTTP method used in the request.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+This error typically occurs when the client uses an unsupported HTTP method to interact with a specific resource. The origin server must include an `Allow` header in the response, which lists the HTTP methods supported for that resource.
+
+For example, attempting a `POST` request on a resource that is unchangeable and only supports `GET` requests will result in a `405` error.
+
+### Cloudflare-specific information
+
+Cloudflare does not directly generate `405` errors. These errors are returned by the origin server when it does not allow the HTTP method used in the request. If you encounter a `405` error, review the configuration of your origin server to ensure the correct methods are enabled for the resource in question.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 406
+source: null
+---
+
+## 406 Not Acceptable
+
+The `406 Not Acceptable` status code indicates that the requested resource is not available in a format that adheres to the content negotiation headers specified by the client (for example, `Accept-Charset` or `Accept-Language`).
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+For example, if a client requests content in a specific language or character set that the server does not support, this error will be generated. To avoid returning a `406` error, the server can instead serve the less preferred method to the client's User-Agent, rather than rejecting the request.
+
+### Cloudflare-specific information
+
+Cloudflare does not generate `406` errors directly but can proxy these responses from the origin server. If content negotiation issues occur, they are typically related to configurations at the origin server, such as language or character set settings.
@@ -0,0 +1,18 @@
+---
+pcx_content_type: troubleshooting
+title: Error 407
+source: null
+---
+
+## 407 Authentication Required
+
+The `407 Proxy Authentication Required` status code indicates that the client did not provide the necessary authentication credentials to access the requested resource through a proxy server.
+For more details, refer to [RFC 7235](https://tools.ietf.org/html/rfc7235).
+
+### Common use cases
+
+This error typically occurs in environments where a proxy server is used as an intermediary between the client and the target server. To resolve this, the client must include the appropriate `Proxy-Authorization` header in the request with valid credentials.
+
+### Cloudflare-specific information
+
+Cloudflare does not generate `407` errors but proxies them from the origin server or an upstream proxy. If a `407` error occurs on a Cloudflare-powered site, review the origin server's proxy configuration to ensure authentication requirements are properly set, and verify that the client is providing the required credentials.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 408
+source: null
+---
+
+## 408 Request Timeout
+
+The `408 Request Timeout` status code indicates that the origin server did not receive the complete request within a reasonable time frame and does not wish to continue waiting for the connection. This response is not commonly used, as servers often prefer to use the "close" connection option to terminate idle connections
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+This error typically occurs when a client fails to send a complete request within the server's timeout period. Common scenarios include slow network connections, server overload or client-side delays to complete the request.
+
+### Cloudflare-specific information
+
+Cloudflare does not generate `408` errors but may proxy them from the origin server. If a `408` error occurs on a Cloudflare-powered site, it is essential to review the origin server's timeout settings and ensure that the server is not overloaded. Additionally, verify that the client's Internet connection is stable and that the request is being sent promptly.
@@ -0,0 +1,22 @@
+---
+pcx_content_type: troubleshooting
+title: Error 409
+source: null
+---
+
+## 409 Conflict
+
+The `409 Conflict` status code indicates that the request could not be completed due to a conflict with the current state of the target resource.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+This error typically happens with a `PUT` request when multiple clients are attempting to edit the same resource. To solve this issue:
+
+    - The server should generate a payload that includes enough information for the client to recognize the source of the conflict.
+    - Clients should retry the request again after resolving the conflict.
+
+### Cloudflare-specific information
+
+Cloudflare will return a 409 response for a [Error 1001: DNS Resolution Error](/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1001/).
@@ -0,0 +1,23 @@
+---
+pcx_content_type: troubleshooting
+title: Error 410
+source: null
+---
+
+## 410 Gone
+
+When a resource is intentionally and permanently removed, servers use the `410 Gone` status code to inform clients that the resource is no longer available.
+In this case:
+
+    - The server suggests that links referencing the resource should be removed.
+    - The server is not obligated to use this status code instead of a `404` response, nor is it required to maintain this response for any specific period of time.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+This status is commonly applied to deprecated content, such as outdated pages or discontinued products.
+
+### Cloudflare-specific information
+
+Cloudflare does not generate `410` for customer websites, we only proxy the request from the origin server. If you encounter a `410` error on a Cloudflare-powered site, the issue lies with the origin server. In such cases, contact your hosting provider for assistance.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 411
+source: null
+---
+
+## 411 Length Required
+
+The `411 Length Required` status code indicates that the client did not specify the `Content-Length` of the request body in the headers, and this information is required to obtain the resource. The client may resend the request after adding the required header field.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+This status code can occur in various scenarios, such as when a client sends an API request without the required `Content-Length` header, when uploading a file where the server needs the header to allocate resources, or when proxies or legacy systems enforce strict HTTP compliance. In each case, the server or intermediary requires the `Content-Length` header to process the request properly.
+
+### Cloudflare-specific information
+
+Cloudflare does not generate `411` for customer websites, we only proxy the request from the origin server. If you encounter a `411` error on a Cloudflare-powered site, the issue lies with the origin server. In such cases, contact your hosting provider for assistance.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 412
+source: null
+---
+
+## 412 Precondition Failed
+
+The `412 Precondition Failed` status code indicates that the server denies the request because the resource does not meet the conditions specified by the client.
+
+For more details, refer to [RFC 7232](https://tools.ietf.org/html/rfc7232).
+
+### Common use cases
+
+One common use case for the `412 Precondition Failed` status code is version control. For example, a client modifying an existing resource may set the `If-Unmodified-Since` header to ensure the resource has not been changed since the client downloaded it for editing. If another client edits the resource after the specified date but before the original client uploads their changes, the server will return a `412` response to prevent overwriting the newer updates.
+
+### Cloudflare-specific information
+
+Cloudflare may serve this response: for more information please refer to [ETag Headers](/cache/reference/etag-headers/).
@@ -0,0 +1,25 @@
+---
+pcx_content_type: troubleshooting
+title: Error 413
+source: null
+---
+
+import { FeatureTable, Render } from "~/components";
+
+## 413 Payload Too Large
+
+The `413 Payload Too Large` status code indicates that the server refuses to process the request because the payload sent by the client exceeds the server's acceptable size limit. The server may optionally close the connection. If this refusal would only happen temporarily, then the server should send a `Retry-After` header to specify when the client should try the request again.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+The `413 Payload Too Large` status code often occurs when clients attempt to upload large files, such as videos or images, or send oversized request bodies, like JSON or XML payloads, that exceed the server's size limits. This can also happen during file transfers or API requests involving large datasets, prompting the server to reject the request.
+
+### Cloudflare-specific information
+
+The upload limit for the Cloudflare API depends on your plan. If you exceed this limit, your API call will receive a `413 Request Entity Too Large` error.
+
+<FeatureTable id="network.max_upload_size" />
+
+If you require a larger upload, break up requests into smaller chunks, change your DNS record to [DNS-only](/dns/proxy-status/#dns-only-records), or [upgrade your plan](/fundamentals/subscriptions-and-billing/change-plan/).
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 414
+source: null
+---
+
+## 414 URI Too Long
+
+The `414 URI Too Long` status code indicates that the server refuses to process the request because the URI provided by the client is excessively long.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+For example, if a client is attempting a `GET` request with an unusually long URI, such as one containing an excessive number of query parameters, after a `POST`, this could be seen as a security risk and a `414` is generated.
+
+### Cloudflare-specific information
+
+Cloudflare will generate a `414` response if the URI length exceeds 32KB.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 415
+source: null
+---
+
+## 415 Unsupported Media Type
+
+The `415 Unsupported Media Type` status code indicates that the server refuses to process the request because the format of the payload is not supported. One way to identify and fix this issue would be to look at the `Content-Type` or `Content-Encoding` headers sent in the client's request.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+This may be triggered by submitting a file type or format that the server is not configured to handle, such as uploading an unsupported image or document format, may also trigger this error.
+
+### Cloudflare-specific information
+
+Cloudflare typically passes this response from the origin server if it encounters an unsupported media type in the client's request payload.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 416
+source: null
+---
+
+## 416 Range Not Satisfiable
+
+The `416 Range Not Satisfiable` status code indicates that the server cannot fulfill the requested range specified in the `Range` header of the client's request.
+
+For more details, refer to [RFC 7233](https://datatracker.ietf.org/doc/html/rfc7233).
+
+### Common use cases
+
+This error can happen when a client requests a byte range outside the bounds of the resource, such as a range exceeding the file's total size. It can also happen if the server does not support partial content delivery or if there is a conflict between the requested range and the server's understanding of the resource, often caused by an outdated or invalid cache.
+
+### Cloudflare-specific information
+
+Cloudflare typically serves this response when the origin server rejects a `Range` header request for a resource. This often occurs if the requested range exceeds the size of the file, as indicated in the `Content-Range` header.
@@ -0,0 +1,19 @@
+---
+pcx_content_type: troubleshooting
+title: Error 417
+source: null
+---
+
+## 417 Expectation Failed
+
+The `417 Expectation Failed` status code indicates that the server could not meet the requirements specified in the `Expect` header of the client's request.
+
+For more details, refer to [RFC 7231](https://tools.ietf.org/html/rfc7231).
+
+### Common use cases
+
+Some clients use the `Expect` header, such as `Expect: 100-continue`, to verify if the server is ready to receive a large payload, and if the server cannot fulfill this expectation, it returns a 417 response. Similarly, a server may reject a request with this error if the client includes an `Expect` header with unsupported or invalid values.
+
+### Cloudflare-specific information
+
+Cloudflare typically forwards this response from the origin server if it encounters an issue related to unsupported or unfulfilled `Expect` headers in the client's request.