Skip to content

[WAF] Update managed rules troubleshooting #24670

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Aug 26, 2025
Merged

[WAF] Update managed rules troubleshooting #24670

merged 7 commits into from
Aug 26, 2025

Conversation

@pedrosousa
Copy link
Contributor

@pedrosousa pedrosousa commented Aug 25, 2025

Summary

Addresses PCX-17622.

Documentation checklist

@github-actions
Copy link
Contributor

github-actions bot commented Aug 25, 2025

This PR requires additional review attention because it affects the following areas:

Redirects

This PR changes current filenames or deletes current files. Make sure you have redirects set up to cover the following paths:

  • /waf/managed-rules/handle-false-positives/

pedrosousa
pedrosousa commented Aug 25, 2025
View reviewed changes
src/content/docs/waf/managed-rules/troubleshooting.mdx

You can use [Security Events](/waf/analytics/security-events/) to help you identify what caused legitimate requests to get blocked. Add filters and adjust the report duration as needed.

If you encounter a false positive caused by a managed rule, do one of the following:
Copy link
Contributor Author

@pedrosousa pedrosousa Aug 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The content below this point about false positives already existed (you can skip it while reviewing).

@github-actions
Copy link
Contributor

github-actions bot commented Aug 25, 2025

This pull request requires reviews from CODEOWNERS as it changes files that match the following patterns:

Pattern Owners
/public/__redirects @GregBrimble, @KianNH, @pedrosousa, @WalshyDev, @cloudflare/pcx-technical-writing
/src/content/docs/waf/ @pedrosousa, @cloudflare/firewall, @cloudflare/pcx-technical-writing

pedrosousa
pedrosousa commented Aug 25, 2025
View reviewed changes
src/content/docs/waf/managed-rules/troubleshooting.mdx

`http.host eq "example.com" and starts_with(http.request.uri.path, "/admin")`

## Troubleshoot false negatives
Copy link
Contributor Author

@pedrosousa pedrosousa Aug 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

New content, based on the troubleshooting page for a previous implementation: https://developers.cloudflare.com/waf/reference/legacy/old-waf-managed-rules/troubleshooting/#troubleshoot-false-negatives.

@github-actions
Copy link
Contributor

github-actions bot commented Aug 25, 2025
edited
Loading

Preview URL: https://931af277.preview.developers.cloudflare.com
Preview Branch URL: https://pedro-pcx-17622-waf-troubleshooting.preview.developers.cloudflare.com

Files with changes (up to 15)

Original Link Updated Link
https://developers.cloudflare.com/waf/managed-rules/troubleshooting/ https://pedro-pcx-17622-waf-troubleshooting.preview.developers.cloudflare.com/waf/managed-rules/troubleshooting/
https://developers.cloudflare.com/waf/managed-rules/handle-false-positives/ https://pedro-pcx-17622-waf-troubleshooting.preview.developers.cloudflare.com/waf/managed-rules/handle-false-positives/
https://developers.cloudflare.com/waf/get-started/ https://pedro-pcx-17622-waf-troubleshooting.preview.developers.cloudflare.com/waf/get-started/

Oxyjun
Oxyjun reviewed Aug 26, 2025
View reviewed changes
@pedrosousa @Oxyjun
Add line break
931af27 
Co-authored-by: Jun Lee <[email protected]>
@pedrosousa pedrosousa merged commit 203416c into production Aug 26, 2025
8 checks passed
@pedrosousa pedrosousa deleted the pedro/PCX-17622-waf-troubleshooting branch August 26, 2025 13:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Oxyjun Oxyjun Oxyjun approved these changes

@GregBrimble GregBrimble Awaiting requested review from GregBrimble

@KianNH KianNH Awaiting requested review from KianNH

@WalshyDev WalshyDev Awaiting requested review from WalshyDev

Assignees

@GregBrimble GregBrimble

@WalshyDev WalshyDev

@KianNH KianNH

Labels

product:waf size/m

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@pedrosousa @Oxyjun @GregBrimble @WalshyDev @KianNH