diff --git a/src/content/docs/bots/additional-configurations/ai-labyrinth.mdx b/src/content/docs/bots/additional-configurations/ai-labyrinth.mdx index 5704c0d17320bd..1234c585cbc601 100644 --- a/src/content/docs/bots/additional-configurations/ai-labyrinth.mdx +++ b/src/content/docs/bots/additional-configurations/ai-labyrinth.mdx @@ -5,22 +5,30 @@ sidebar: order: 7 --- -import { Render, Tabs, TabItem } from "~/components" +import { Render, Tabs, TabItem, Steps } from "~/components" The AI Labyrinth adds invisible links on your webpage with specific `Nofollow` tags to block AI crawlers that do not adhere to the recommended guidelines and crawl without permission. AI crawlers that scrape your website content without permission will be stuck in a maze of never-ending links, and their details are recorded and used by all Cloudflare customers who choose to block [AI bots](/bots/concepts/bot/#ai-bots). These links do not impact your search engine optimization (SEO) or your website's appearance, and are only seen by bots. AI bots that respect no-crawl instructions will safely ignore this honeypot. -To enable [AI Labyrinth](/bots/additional-configurations/ai-labyrinth) based on your plan: +To enable [AI Labyrinth](/bots/additional-configurations/ai-labyrinth): - - - - - - - - - - + + + + + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **AI Labyrinth**. + 4. Turn **AI Labyrinth** on. + + \ No newline at end of file diff --git a/src/content/docs/bots/additional-configurations/block-ai-bots.mdx b/src/content/docs/bots/additional-configurations/block-ai-bots.mdx index 95b5db0ac9ac43..d1ee031a66afa6 100644 --- a/src/content/docs/bots/additional-configurations/block-ai-bots.mdx +++ b/src/content/docs/bots/additional-configurations/block-ai-bots.mdx @@ -6,7 +6,7 @@ sidebar: label: Block AI Bots --- -import { Render, Tabs, TabItem } from "~/components" +import { Render, Steps } from "~/components" :::note[Block AI bots availability] Note that **Block AI bots** feature is only available in the new application security dashboard (beta). @@ -18,7 +18,8 @@ You can choose to block AI bots by activating **Block AI bots**. Activating this To block [AI bots](/bots/concepts/bot/#ai-bots): -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. 2. Go to **Security** > **Settings**. 3. Filter by **Bot traffic**. 4. Go to **Block AI bots**. @@ -27,5 +28,6 @@ To block [AI bots](/bots/concepts/bot/#ai-bots): - **Block on all pages**: Use this option if you wish to block AI bots on all your pages. - **Do not block (off)**: Use this option if you wish to allow AI bots on all your pages. 6. Select **Save** to save your configuration. + To block individual AI crawlers (rather than blocking all crawlers), use [AI Audit](/ai-audit/). \ No newline at end of file diff --git a/src/content/docs/bots/additional-configurations/detection-ids.mdx b/src/content/docs/bots/additional-configurations/detection-ids.mdx index 3f2617cf905ef3..c69d267446208c 100644 --- a/src/content/docs/bots/additional-configurations/detection-ids.mdx +++ b/src/content/docs/bots/additional-configurations/detection-ids.mdx @@ -5,7 +5,7 @@ sidebar: order: 2 --- -import { Render } from "~/components" +import { Render, Tabs, TabItem, Steps } from "~/components" @@ -40,7 +40,8 @@ You can create or edit existing Logpush jobs to include the new Bot Detection ID ### Via the Cloudflare dashboard -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. 2. Go to **Analytics & Logs** > **Logs**. 3. Select **Add Logpush Job**. 4. Select **HTTP Requests** as the dataset. @@ -48,6 +49,7 @@ You can create or edit existing Logpush jobs to include the new Bot Detection ID 6. Select and enter the destination information. 7. Prove the ownership. 8. Select **Save**. + ### Via the API @@ -55,11 +57,26 @@ You can create or edit existing Logpush jobs to include the new Bot Detection ID ## Create or edit an expression -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. -2. Go to **Security** > **Bots**, apply filters and select **Create custom rule** to create a [custom rule](/waf/custom-rules/create-dashboard/) based on those filters. - - Alternatively, if you already created a custom rule, go to **Security** > **WAF** > **Custom rules** and edit the expression of an existing custom rule. -3. Use the `cf.bot_management.detection_ids` field in the rule expression. -4. Select **Save**. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. + 2. Go to **Security** > **Bots**, apply filters and select **Create custom rule** to create a [custom rule](/waf/custom-rules/create-dashboard/) based on those filters. Alternatively, if you already created a custom rule, go to **Security** > **WAF** > **Custom rules** and edit the expression of an existing custom rule. + 3. Use the `cf.bot_management.detection_ids` field in the rule expression. + 4. Select **Save**. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Analytics**. + 3. Apply filters and select **Create custom security rule** to create a custom rule based on your filters. Alternatively, if you have already created a custom rule, you can go to the existing rule in **Security** > **Security rules** and edit the expression based on your filters. + 4. Use the `cf.bot_management.detection_ids` field in the rule expression. + 5. Select **Deploy**. + + + + ## Use cases @@ -92,11 +109,26 @@ Cloudflare's [Managed Challenge](/cloudflare-challenges/challenge-types/challeng To access account takeover detections: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. -2. Go to **Security** > **WAF**. -3. Under **Custom Rules**, select **Create rule**. -4. Fill out the form using **Bot Detection IDs** along with other necessary information. -5. Select **Save as draft** to return to it later, or **Deploy** to deploy the rule. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. + 2. Go to **Security** > **WAF**. + 3. Under **Custom Rules**, select **Create rule**. + 4. Fill out the form using **Bot Detection IDs** along with other necessary information. + 5. Select **Save as draft** to return to it later, or **Deploy** to deploy the rule. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Security rules**. + 3. Select **Create rule** and choose **Custom rule**. + 4. Fill out the form using **Bot Detection IDs** along with other necessary information. + 5. Select **Save as draft** to return to it later, or **Deploy** to deploy the rule. + + + ```js title="Rule example" @@ -109,11 +141,26 @@ Rate limiting rules can limit the number of logins from a particular IP, JA4 Fin To use rate limiting rules with account takeover detections: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. -2. Go to ***Security** > **WAF**. -3. Under **Rate limiting rules**, select **Create rule**. -4. Fill out the form using the **Custom expression builder** and `cf.bot_management_detection_ids` along with other necessary information. -5. Select **Save as draft** to return to it later, or **Deploy** to deploy the rule. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. + 2. Go to **Security** > **WAF**. + 3. Under **Rate limiting rules**, select **Create rule**. + 4. Fill out the form using the **Custom expression builder** and `cf.bot_management_detection_ids` along with other necessary information. + 5. Select **Save as draft** to return to it later, or **Deploy** to deploy the rule. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Security rules**. + 3. Select **Create rule** and choose **Rate limiting rule**. + 4. Fill out the form using the **Custom expression builder** and `cf.bot_management_detection_ids` along with other necessary information. + 5. Select **Save as draft** to return to it later, or **Deploy** to deploy the rule. + + + :::note The rule can be enhanced with Leaked Credential Checks. Refer to the [WAF documentation](/waf/detections/leaked-credentials/) for more information on how to include leaked credentials and account takeover detections in a rate limiting rule. diff --git a/src/content/docs/bots/additional-configurations/managed-robots-txt.mdx b/src/content/docs/bots/additional-configurations/managed-robots-txt.mdx index ab47554a74b5f5..db29491947444e 100644 --- a/src/content/docs/bots/additional-configurations/managed-robots-txt.mdx +++ b/src/content/docs/bots/additional-configurations/managed-robots-txt.mdx @@ -6,7 +6,7 @@ sidebar: label: Managed robots.txt --- -import { Render, Tabs, TabItem } from "~/components"; +import { Render, Tabs, TabItem, Steps } from "~/components"; Protect your website or application from AI crawlers by implementing a `robots.txt` file on your domain to direct AI bot operators on what content they can and cannot scrape for AI model training. @@ -45,27 +45,26 @@ If your website does not have a `robots.txt` file, Cloudflare creates a new file ## Implementation -To implement a `robots.txt` file on your domain based on your plan: - - - - - - - - - - - +To implement a `robots.txt` file on your domain: + + + + + + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Managed robots.txt**. + 5. Turn **Managed robots.txt** on. + + ## Availability diff --git a/src/content/docs/bots/additional-configurations/sequence-rules.mdx b/src/content/docs/bots/additional-configurations/sequence-rules.mdx index 5ee7b7fb7e8a70..7db00bd86137c1 100644 --- a/src/content/docs/bots/additional-configurations/sequence-rules.mdx +++ b/src/content/docs/bots/additional-configurations/sequence-rules.mdx @@ -5,7 +5,7 @@ sidebar: order: 4 --- -import { Render } from "~/components" +import { Render, Steps } from "~/components" @@ -20,14 +20,17 @@ Sequence rules is currently in private beta. If you would like to be included in ## Enable sequence rules via the API + 1. [Create an API token](/fundamentals/api/get-started/create-token/) if you do not already have one. The API token must include the _Zone_ > _Fraud Detection_ > _Edit_ permission. 2. [Get the zone ID](/fundamentals/account/find-account-and-zone-ids/) for the zone(s) where you want to enable sequence rules. 3. [Add the endpoints](/api-shield/management-and-monitoring/) that you want to track in your sequence rules using API Shield's Endpoint Management and make note of the short ID. - :::note - - The short ID will not be visible until our account team has enabled this feature for you. - ::: 4. Enable the sequence cookie by adding your API token and zone ID to the following API call. + + +:::note + +The short ID will not be visible until your account team has enabled this feature for you. +::: ```bash title="API call" curl --request PUT \ @@ -40,7 +43,6 @@ https://api.cloudflare.com/client/v4/zones/{zone_id}/fraud_detection/sequence_co 5. Use the expression editor to write sequence or timing based rules via [custom rules](/waf/custom-rules/), [rate limiting rules](/waf/rate-limiting-rules/), or [transform rules](/rules/transform/). You can put these rules in log only mode to monitor. :::note - When you enable sequence rules, Cloudflare will start setting cookies for all requests that match your endpoints. ::: @@ -92,16 +94,16 @@ Disabling sequence rules will stop the rules fields from being populated. If you To disable sequence rules: + 1. [Create an API token](/fundamentals/api/get-started/create-token/) if you do not already have one. The API token must include the _Zone_ > _Fraud Detection_ > _Edit_ permission. 2. [Get the zone ID](/fundamentals/account/find-account-and-zone-ids/) for the zone(s) where you want to enable sequence rules. 3. [Add the endpoints](/api-shield/management-and-monitoring/) that you want to track in your sequence rules using API Shield's Endpoint Management and make note of the short ID. - - :::note - - The short ID will not be visible until our account team has enabled this feature for you. - ::: - 4. Disable the sequence cookie using your API token, zone ID, and by setting `enabled` to `false` on the following API call. + + +:::note +The short ID will not be visible until your account team has enabled this feature for you. +::: ```bash title="API call" curl --request PUT https://api.cloudflare.com/client/v4/zones/{zone_id}/fraud_detection/sequence_cookies \ diff --git a/src/content/docs/bots/additional-configurations/static-resources.mdx b/src/content/docs/bots/additional-configurations/static-resources.mdx index 3693e14b23f176..07c542cd11ed34 100644 --- a/src/content/docs/bots/additional-configurations/static-resources.mdx +++ b/src/content/docs/bots/additional-configurations/static-resources.mdx @@ -6,7 +6,7 @@ sidebar: --- -import { GlossaryTooltip, Render } from "~/components" +import { Render, Tabs, TabItem, Steps, GlossaryTooltip } from "~/components"; Pro, Business, and Enterprise customers can use Cloudflare's bot solutions to protect their static resources from bots. @@ -19,9 +19,25 @@ If you enable static resource protection, you may block good bots — like mail To enable this feature as a Pro or Business customer or an Enterprise customer without Bot Management: -1. Go to **Security** > **Bots**. -2. Select **Configure Super Bot Fight Mode**. -3. For **Static resource protection**, select **On**. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. Select **Configure Super Bot Fight Mode**. + 4. For **Static resource protection**, select **On**. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Super Bot Fight Mode**. + 5. Under **Configurations**, select the edit icon for **Static resource protection** and turn it on. + + + :::caution diff --git a/src/content/docs/bots/bot-analytics.mdx b/src/content/docs/bots/bot-analytics.mdx index b8c7c4d88e98ed..e8ef35f42d0a1a 100644 --- a/src/content/docs/bots/bot-analytics.mdx +++ b/src/content/docs/bots/bot-analytics.mdx @@ -17,7 +17,11 @@ Business and Enterprise customers without Bot Management can use **Bot Analytics ### Access -To use Bot Analytics, open the Cloudflare dashboard and select **Security** > **Bots**. +You can access Bot Analytics by going to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and selecting your account and domain. + +Old dashboard: **Security** > **Bots**. + +New dashboard: **Security** > **Analytics** > **Bot analysis**. ![View Bot Analytics in the Cloudflare dashboard. For more details, keep reading.](~/assets/images/bots/bot-analytics-dashboard-biz.png) @@ -49,7 +53,11 @@ Enterprise customers with Bot Management can use **Bot Analytics** to dynamicall ### Access -To use Bot Analytics, open the Cloudflare dashboard and select **Security** > **Bots**. +You can access Bot Analytics by going to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and selecting your account and domain. + +Old dashboard: **Security** > **Bots**. + +New dashboard: **Security** > **Analytics** > **Bot analysis**. ![View Bot Analytics in the Cloudflare dashboard. For more details, keep reading.](~/assets/images/bots/bot-analytics-dashboard-ent.png) diff --git a/src/content/docs/bots/concepts/bot/verified-bots/policy.mdx b/src/content/docs/bots/concepts/bot/verified-bots/policy.mdx index 8024e2bd1411db..d3c4de6f258f3b 100644 --- a/src/content/docs/bots/concepts/bot/verified-bots/policy.mdx +++ b/src/content/docs/bots/concepts/bot/verified-bots/policy.mdx @@ -15,7 +15,7 @@ In order to be listed by Cloudflare as a scoring a request incorrectly. When a customer submits a False Negative or a False Positive report, Cloudflare manually analyzes this data and uses it as a training dataset for our next Machine Learning model. @@ -41,11 +41,13 @@ If Cloudflare is unable to detect a portion of automated traffic on your site, s ## Submit a report -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. 2. Go to **Security** > **Bots**. 3. Apply one or more bot score filters. 4. Select **Report incorrect data** and fill out the form. 5. Select **Submit**. + ## Via the API diff --git a/src/content/docs/bots/frequently-asked-questions.mdx b/src/content/docs/bots/frequently-asked-questions.mdx index bd20747a311386..0ea4c00650dc6f 100644 --- a/src/content/docs/bots/frequently-asked-questions.mdx +++ b/src/content/docs/bots/frequently-asked-questions.mdx @@ -24,7 +24,7 @@ To know what's included in your plan, refer to our [Plans](/bots/plans). ### How do I set up my bot product? -To learn how to set up your bot product, refer to [Get started](/bots/get-started). +To learn how to set up your bot product, refer to [Get started](/bots/get-started/). --- @@ -136,11 +136,26 @@ Please follow instructions in the following questions on how to disable BFM and **How to disable BFM/SBFM feature?** -If you encounter any issues with BFM/SBFM feature (for example, false positive), you can disable it under **Security** > **Bots**. +If you encounter any issues with BFM/SBFM feature (for example, false positive), you can disable it under **Security** > **Settings**. -- For **Free** plans, toggle the **Bot Fight Mode** option to **Off** -- For **Pro** plans, click the **Configure Super Bot Fight Mode** link and set each of **Definitely automated** and **Verified bots** features to **Allow**, and toggle the **Static resource protection** and **JavaScript Detections** options to **Off** -- For **Business** and **Enterprise** (with no Bot Management add-on) plans, click the **Configure Super Bot Fight Mode** link and set each of **Definitely automated**, **Likely automated** and **Verified bots** features to **Allow**, and toggle the **Static resource protection** and **JavaScript Detections** options to **Off** +For **Free** plans + + 1. Filter by **Bot traffic**. + 2. Turn **Bot Fight Mode** off. + +For **Pro** plans + + 1. Filter by **Bot traffic**. + 2. Go to **Super Bot Fight Mode**. + 3. Set **Definitely automated traffic** and **Verified bots** to **Allow** + 4. Turn **Static resource protection** and **JavaScript detections** off. + +For **Business** and **Enterprise** (with no Bot Management add-on) plans + + 1. Filter by **Bot traffic**. + 2. Go to **Super Bot Fight Mode**. + 3. Set each of **Definitely automated traffic**, **Likely automated** and **Verified bots** to **Allow**. + 4. Turn **Static resource protection** and **JavaScript detections** off. diff --git a/src/content/docs/bots/get-started/bot-fight-mode.mdx b/src/content/docs/bots/get-started/bot-fight-mode.mdx index 234071a829e604..c675b58f5a7456 100644 --- a/src/content/docs/bots/get-started/bot-fight-mode.mdx +++ b/src/content/docs/bots/get-started/bot-fight-mode.mdx @@ -9,7 +9,7 @@ head: --- -import { Render } from "~/components" +import { Tabs, TabItem, Steps, Render } from '~/components'; @@ -29,9 +29,24 @@ If you find that **Bot Fight Mode** is causing problems with your application tr To disable Bot Fight Mode: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account and domain. -2. Go to **Security** > **Bots**. -3. For **Bot Fight Mode**, select **Off**. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. For **Bot Fight Mode**, select **Off**. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Bot Fight Mode**. + 5. Turn **Bot Fight Mode** on. + + + ## Block AI bots diff --git a/src/content/docs/bots/get-started/bot-management.mdx b/src/content/docs/bots/get-started/bot-management.mdx index 3d3ea8837668f6..90a44f32724ade 100644 --- a/src/content/docs/bots/get-started/bot-management.mdx +++ b/src/content/docs/bots/get-started/bot-management.mdx @@ -9,7 +9,7 @@ learning_center: --- -import { Render } from "~/components" +import { Tabs, TabItem, Steps, Render } from '~/components'; Bot Management for Enterprise is a paid add-on that provides sophisticated bot protection for your domain. Customers can identify automated traffic, take appropriate action, and view detailed analytics within the dashboard. @@ -23,11 +23,30 @@ This Enterprise product provides the most flexibility to customers by: Bot Management is automatically enabled for Enterprise zones entitled with the add-on. -To enable a [Bot Management](https://dash.cloudflare.com/?to=/:account/:zone/security/bots) trial on Enterprise zones without the Bot Management add-on entitled: - -1. Log in to your [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. -2. Go to **Security** > **Bots**. -3. Select **Add Bot Management**. + + + To enable a [Bot Management](https://dash.cloudflare.com/?to=/:account/:zone/security/bots) trial on Enterprise zones without the Bot Management add-on entitled: + + 1. Log in to your [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. Select **Add Bot Management**. + + + + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. +2. Go to **Security** > **Settings**. +3. Filter by **Bot traffic**. +4. Go to **Bot Management**. +5. Turn **Bot Management** on. +6. Choose how your domain should respond to various types of traffic by selecting the associated edit icon. + - For more details on verified bots, refer to [Verified Bots](/bots/concepts/bot/#verified-bots). + - For more details on supported file types, refer to [Static resource protection](/bots/additional-configurations/static-resources/). + - For more details on invisible code injection, refer to [JavaScript detections](/bots/additional-configurations/javascript-detections/). + - For more details on WordPress optimization, refer to [Super Bot Fight Mode for WordPress](/bots/troubleshooting/wordpress-loopback-issue/). + + + :::note diff --git a/src/content/docs/bots/reference/alerts.mdx b/src/content/docs/bots/reference/alerts.mdx index 9c8d189c321b2c..a8883af798b9d7 100644 --- a/src/content/docs/bots/reference/alerts.mdx +++ b/src/content/docs/bots/reference/alerts.mdx @@ -6,7 +6,7 @@ sidebar: --- -import { AvailableNotifications } from "~/components" +import { AvailableNotifications, Steps } from "~/components" Bot alerts inform you when Cloudflare detects spikes in your traffic with any of the following characteristics: @@ -24,7 +24,8 @@ Bot alerts inform you when Cloudflare detects spikes in your traffic with any of To receive Bot alerts, you must [configure a notification](/notifications/get-started/). Notifications help you stay up to date with your Cloudflare account through email, PagerDuty, or webhooks, depending on your Cloudflare plan. -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account. + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account. 2. Go to **Notifications**. 3. In **Notifications**, select **Add**. 4. Select **Bot Management** from the Product list. @@ -36,6 +37,7 @@ To receive Bot alerts, you must [configure a notification](/notifications/get-st 8. Configure a delivery method for the notification. The available delivery methods depend on your Cloudflare plan. For more information, refer to [Cloudflare Notifications](/notifications/). 9. If you are creating a notification for Custom Bot Detection Alert, define the parameters that will filter the notifications you will receive. 10. Select **Save**. + --- diff --git a/src/content/docs/bots/troubleshooting/wordpress-loopback-issue.mdx b/src/content/docs/bots/troubleshooting/wordpress-loopback-issue.mdx index ec9944a5f42acb..5e02bb1bf20d72 100644 --- a/src/content/docs/bots/troubleshooting/wordpress-loopback-issue.mdx +++ b/src/content/docs/bots/troubleshooting/wordpress-loopback-issue.mdx @@ -6,7 +6,7 @@ sidebar: --- -import { Render } from "~/components" +import { Tabs, TabItem, Steps, Render } from '~/components';
@@ -19,10 +19,25 @@ Loopback requests may also be blocked by [I’m Under Attack mode](/fundamentals ## Enable Optimize for WordPress -1. Log in to the [Cloudflare dashboard](http://dash.cloudflare.com) and select your account and domain. -2. Go to **Security** > **Bots**. -3. Select **Configure Bot Management**. -4. Enable **Optimize for WordPress**. + + + + 1. Log in to the [Cloudflare dashboard](http://dash.cloudflare.com), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. Select **Configure Bot Management**. + 4. Enable **Optimize for WordPress**. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Super Bot Fight Mode**. + 4. Under **Configurations**, select the edit icon for **Optimize for WordPress** and turn it on. + + + ## Availability diff --git a/src/content/partials/bots/ai-labyrinth-enable.mdx b/src/content/partials/bots/ai-labyrinth-enable.mdx index dd4c6778c70390..8d293f163712fa 100644 --- a/src/content/partials/bots/ai-labyrinth-enable.mdx +++ b/src/content/partials/bots/ai-labyrinth-enable.mdx @@ -5,7 +5,7 @@ inputParameters: param1 import { Markdown } from "~/components" -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. 2. Go to **Security** > **Bots**. 3. Select **Configure {props.one}**. 4. Enable **AI Labyrinth**. \ No newline at end of file diff --git a/src/content/partials/bots/block-ai-bots-enable.mdx b/src/content/partials/bots/block-ai-bots-enable.mdx deleted file mode 100644 index ff18e47e5e3859..00000000000000 --- a/src/content/partials/bots/block-ai-bots-enable.mdx +++ /dev/null @@ -1,15 +0,0 @@ ---- -inputParameters: param1 - ---- - -import { Markdown } from "~/components" - -AI Bots will block Definitely Automated bots and Verified AI Bots, such as AI Search, AI Assistant, AI Crawler, or an AI Archiver. - -To block [AI bots](/bots/concepts/bot/#ai-bots): - -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. -2. Go to **Security** > **Bots**. -3. Select **Configure {props.one}**. -4. Enable **Block AI bots**. \ No newline at end of file diff --git a/src/content/partials/bots/bot-fight-mode-enable.mdx b/src/content/partials/bots/bot-fight-mode-enable.mdx index eb6c85dad2b378..1ee157a5820947 100644 --- a/src/content/partials/bots/bot-fight-mode-enable.mdx +++ b/src/content/partials/bots/bot-fight-mode-enable.mdx @@ -2,9 +2,25 @@ {} --- +import { Tabs, TabItem, Steps } from '~/components'; To start using Bot Fight Mode: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account and domain. -2. Go to **Security** > **Bots**. -3. For **Bot Fight Mode**, select **On**. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. For **Bot Fight Mode**, select **On**. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Bot Fight Mode**. + 5. Turn **Bot Fight Mode** on. + + + \ No newline at end of file diff --git a/src/content/partials/bots/disable-sbfm.mdx b/src/content/partials/bots/disable-sbfm.mdx index 72d4b64800f7c4..3cb268a6d3094e 100644 --- a/src/content/partials/bots/disable-sbfm.mdx +++ b/src/content/partials/bots/disable-sbfm.mdx @@ -2,13 +2,31 @@ {} --- +import { Tabs, TabItem, Steps } from '~/components'; If you find that **Super Bot Fight Mode** is causing problems with your application traffic, you may want to disable it. To disable Super Bot Fight Mode: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account and domain. -2. Go to **Security** > **Bots**. -3. Click **Configure Super Bot Fight Mode**. -4. For all bot groupings (**Definitely automated**, **Verified bots**, etc.), set the value to **Allow**. -5. For all other options (**Static resource protection**, **JavaScript Detections**), make sure the toggles are **Off**. + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. Select **Configure Super Bot Fight Mode**. + 4. For all bot groupings (**Definitely automated**, **Verified bots**, etc.), set the value to **Allow**. + 5. For all other options (**Static resource protection**, **JavaScript Detections**), ensure they are off. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Super Bot Fight Mode**. + 5. Turn **Super Bot Fight Mode** off. + 6. For all bot groupings (**Definitely automated traffic**, **Verified bots**), select the edit icon and set the value to **Allow**. + 7. For all other options (**Static resource protection**, **JavaScript detections**, **Optimize for WordPress**), select the edit icon and ensure they are off. + + + \ No newline at end of file diff --git a/src/content/partials/bots/enable-managed-robots-txt.mdx b/src/content/partials/bots/enable-managed-robots-txt.mdx index 71e8210a53749f..aedcfc38612b25 100644 --- a/src/content/partials/bots/enable-managed-robots-txt.mdx +++ b/src/content/partials/bots/enable-managed-robots-txt.mdx @@ -5,7 +5,7 @@ inputParameters: params1 import { Markdown } from "~/components" -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. 2. Go to **Security** > **Bots**. 3. Select **Configure {props.one}**. -4. On **Manage bot traffic with robots.txt**, select the toggle. \ No newline at end of file +4. Turn **Manage bot traffic with robots.txt** on. \ No newline at end of file diff --git a/src/content/partials/bots/get-started-pro-biz-steps.mdx b/src/content/partials/bots/get-started-pro-biz-steps.mdx index 643f29cda0c199..9124ecdb0f3d5d 100644 --- a/src/content/partials/bots/get-started-pro-biz-steps.mdx +++ b/src/content/partials/bots/get-started-pro-biz-steps.mdx @@ -2,9 +2,13 @@ {} --- +import { Tabs, TabItem, Steps } from '~/components'; + To start using Super Bot Fight Mode: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account and domain. + + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. 2. Go to **Security** > **Bots**. 3. Select **Configure Super Bot Fight Mode**. 4. @@ -14,6 +18,24 @@ To start using Super Bot Fight Mode: - For more details on supported file types, refer to [Static resource protection](/bots/additional-configurations/static-resources/). - For more details on invisible code injection, refer to [JavaScript detections](/bots/additional-configurations/javascript-detections/). + + + +1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. +2. Go to **Security** > **Settings**. +3. Filter by **Bot traffic**. +4. Go to **Super Bot Fight Mode**. +6. Turn **Super Bot Fight Mode** on. +7. Choose how your domain should respond to various types of traffic by selecting the associated edit icon: + + - For more details on verified bots, refer to [Verified Bots](/bots/concepts/bot/#verified-bots). + - For more details on supported file types, refer to [Static resource protection](/bots/additional-configurations/static-resources/). + - For more details on invisible code injection, refer to [JavaScript detections](/bots/additional-configurations/javascript-detections/). + - For more details on WordPress optimization, refer to [Super Bot Fight Mode for WordPress](/bots/troubleshooting/wordpress-loopback-issue/). + + + + :::caution[Warning] If your organization also uses [Cloudflare Tunnel](/cloudflare-one/connections/connect-networks/), keep **Definitely Automated** set to **Allow**. Otherwise, tunnels might fail with a `websocket: bad handshake` error. diff --git a/src/content/partials/bots/latest-ml-model-enable.mdx b/src/content/partials/bots/latest-ml-model-enable.mdx index 9f059212300bf5..d2481efade5da2 100644 --- a/src/content/partials/bots/latest-ml-model-enable.mdx +++ b/src/content/partials/bots/latest-ml-model-enable.mdx @@ -3,13 +3,28 @@ --- -import { Markdown } from "~/components" +import { Tabs, TabItem, Steps } from '~/components'; Cloudflare encourages Enterprise customers to enable auto-updates to its Machine Learning models to get the newest bot detection models as they are released. To enable auto-updates: -1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account and domain. -2. Go to **Security** > **Bots**. -3. Select **Configure Bot Management**. -4. Enable **Auto-updates to the Machine Learning Model**. \ No newline at end of file + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. + 2. Go to **Security** > **Bots**. + 3. Select **Configure Bot Management**. + 4. Enable **Auto-updates to the Machine Learning Model**. + + + + + 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain. + 2. Go to **Security** > **Settings**. + 3. Filter by **Bot traffic**. + 4. Go to **Bot Management**. + 5. Under **Configurations**, select the edit icon for **Auto-updates to the Machine Learning Model** and turn it on. + + + \ No newline at end of file diff --git a/src/content/partials/bots/sbfm-upgrade.mdx b/src/content/partials/bots/sbfm-upgrade.mdx index f7c6734d2837f2..1292e50cd2cea3 100644 --- a/src/content/partials/bots/sbfm-upgrade.mdx +++ b/src/content/partials/bots/sbfm-upgrade.mdx @@ -6,5 +6,7 @@ :::note If you are upgrading from Bot Fight Mode to Super Bot Fight Mode, you must disable Bot Fight Mode in your Bot settings. -To turn off Bot Fight Mode, go to **Security** > **Bots** and select **Configure Super Bot Fight Mode**. +Old dashboard: **Security** > **Bots**, and select **Configure Bot Fight Mode**. + +New dashboard: **Security** > **Settings**. Filter by **Bot traffic** and turn **Bot Fight Mode** off. ::: \ No newline at end of file diff --git a/src/content/partials/cloudflare-challenges/javascript-detections-enable.mdx b/src/content/partials/cloudflare-challenges/javascript-detections-enable.mdx index 94888b78024406..2e986ad8f8957e 100644 --- a/src/content/partials/cloudflare-challenges/javascript-detections-enable.mdx +++ b/src/content/partials/cloudflare-challenges/javascript-detections-enable.mdx @@ -20,6 +20,6 @@ To enable JavaScript detections using the Bot traffic settings module: 1. Log in to your [Cloudflare dashboard](https://dash.cloudflare.com/), and select your account and domain. 2. Go to **Security** > **Settings**. -3. Under your bot traffic plan configurations, select the edit icon for **JS detections** and switch the **JavaScript Detections** toggle to **On**. +3. Under your bot traffic plan configurations, select the edit icon for **JS detections** and turn **JavaScript Detections** on. \ No newline at end of file