Skip to content

[Email Security and Magic Firewall] Dashbutton-related updates #24909

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Sep 3, 2025
Merged

[Email Security and Magic Firewall] Dashbutton-related updates #24909

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
eed7534
All updates support the dashbutton updates and/or small UI-related co…
caley-b Sep 3, 2025
b7ccafd
Added the component import.
caley-b Sep 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 5 additions & 5 deletions src/content/docs/cloudflare-one/email-security/email-monitoring/search-email.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -284,17 +284,17 @@ To open links in Security Center:

1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Email Security** > **Investigation**.
2. Locate the message you want to open links for, select the three dots, then select **View details**.
2. Under **Details**, go to **Links identified**.
2. Under **Details**, go to **Links identified**.
3. Locate the link you want to open, and select **Open in Security Center**.
4. You will be redirected to **Investigate** under **Security Center**.
4. You will be redirected to **Investigate** in the Cloudflare dashboard.
5. Select **Scan now**.
6. The dashboard will generate a report for your link.

To open links in Browser Isolation:

1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Email Security** > **Investigation**.
2. Locate the message you want to open links for, select the three dots, then select **View details**.
2. Under **Details**, go to **Links identified**.
2. Under **Details**, go to **Links identified**.
3. Locate the link you want to open, and select **Open in Browser Isolation**.
4. The link will open in a separate window where you will be able to browse the content securely.

Expand All @@ -304,12 +304,12 @@ To open and investigate a link in an external tool:

1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Email Security** > **Investigation**.
2. Locate the message you want to open links for, select the three dots, then select **View details**.
2. Under **Details**, go to **Links identified**.
2. Under **Details**, go to **Links identified**.
3. Locate the link you want to open, and select **Copy URL**.
3. Paste the link in your external tool.

:::caution
You may encounter a `400 Bad Request` error after turning **Clientless Web Isolation** on.
You may encounter a `400 Bad Request` error after turning **Clientless Web Isolation** on.

If you encounter this error:

Expand Down
24 changes: 15 additions & 9 deletions src/content/docs/magic-firewall/how-to/add-rules.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,17 +6,21 @@ sidebar:

---

import { DashButton } from "~/components";

You can check for an existing root ruleset from the dashboard or via the [Account rulesets API](/api/resources/rulesets/methods/list/). If you are a new Magic Transit customer, you may not have a root ruleset created for your account. To view examples for root rulesets, review the [Magic Firewall Terraform documentation](https://registry.terraform.io/providers/cloudflare/cloudflare/latest/docs/resources/magic_firewall_ruleset).

By default, you can create a maximum of 200 rules. We recommend you create lists of IP addresses to reference within rules to streamline rule management.

## Add a rule

1. Log in to your [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account.
2. Select **Magic Firewall**.
3. In the **Custom rules** tab, select **Add a Rule**.
4. Fill out the information for your new rule. All existing rules apply to IPv4. You can use a managed [IP list](https://www.cloudflare.com/en-gb/ips/) when populating the **Value**.
5. When you are done, select **Add new rule**.
1. In the Cloudflare dashboard, go to the **Magic Firewall** page.

<DashButton url="/?to=/:account/network-security/magic_firewall" />

2. In the **Custom rules** tab, select **Add a Rule**.
3. Fill out the information for your new rule. All existing rules apply to IPv4. You can use a managed [IP list](https://www.cloudflare.com/en-gb/ips/) when populating the **Value**.
4. When you are done, select **Add new rule**.

## Create a disabled rule

Expand All @@ -28,10 +32,12 @@ To disable an existing rule, from the **Magic Firewall Rules** page, set the **E

## Update a rule

1. Log in to your [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account.
2. Select **Magic Firewall** > **Custom rules**.
3. Locate the rule you want to edit, and select **Edit**.
4. Update the rule with your changes and select **Edit rule**.
1. In the Cloudflare dashboard, go to the **Magic Firewall** page.

<DashButton url="/?to=/:account/network-security/magic_firewall" />

2. In the **Custom rules** tab, locate the rule you want to edit and select the three dots > **Edit**.
3. Update the rule with your changes and select **Save rule**.

## Delete an existing rule

Expand Down
44 changes: 26 additions & 18 deletions src/content/docs/magic-firewall/how-to/enable-managed-rulesets.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,8 @@ pcx_content_type: how-to

---

import { DashButton } from "~/components";

With [managed rulesets](/ruleset-engine/managed-rulesets/), you can quickly deploy rules maintained by Cloudflare, and you can use Magic Firewall to control which rules are enabled.

:::note[Note:]
Expand Down Expand Up @@ -138,13 +140,15 @@ To delete a ruleset, refer to [Delete a rule in a ruleset](/ruleset-engine/rules

You can also use the dashboard to enable managed rulesets.

1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account.
2. Go to **Magic Firewall** > **Managed rules**.
3. Select **Deploy managed ruleset**.
4. The page will refresh and show you rulesets configured by Cloudflare that are available to your account. Choose the ruleset you want with **Select ruleset**. If you do not see the ruleset you want, contact your account manager to get a list of all Magic Firewall Managed rulesets.
5. Under **Ruleset configuration**, configure the **Ruleset action** from the drop-down menu. Cloudflare recommends you change this setting to **Log** to evaluate how the ruleset impacts your traffic before deciding on an action. For more information, refer to [Override a managed ruleset](/ruleset-engine/managed-rulesets/override-managed-ruleset/).
6. Still under **Ruleset configuration**, choose *Enabled* from the dropdown-menu for the **Ruleset status**. This will apply an override to the default status of all the rules in the ruleset.
7. Select **Deploy** to deploy the Magic Firewall Managed ruleset with no rule-level overrides.
1. In the Cloudflare dashboard, go to the **Magic Firewall** page.

<DashButton url="/?to=/:account/network-security/magic_firewall" />

2. In the **Managed rules** tab, select **Deploy managed ruleset**.
3. The page will refresh and show you rulesets configured by Cloudflare that are available to your account. Choose the ruleset you want with **Select ruleset**. If you do not see the ruleset you want, contact your account manager to get a list of all Magic Firewall Managed rulesets.
4. Under **Ruleset configuration**, configure the **Ruleset action** from the drop-down menu. Cloudflare recommends you change this setting to **Log** to evaluate how the ruleset impacts your traffic before deciding on an action. For more information, refer to [Override a managed ruleset](/ruleset-engine/managed-rulesets/override-managed-ruleset/).
5. Still under **Ruleset configuration**, choose *Enabled* from the dropdown-menu for the **Ruleset status**. This will apply an override to the default status of all the rules in the ruleset.
6. Select **Deploy** to deploy the Magic Firewall Managed ruleset with no rule-level overrides.

### Add rule-level overrides

Expand All @@ -154,21 +158,25 @@ On the other hand, if you did not apply Cloudflare’s recommendation in the pre

To add rule-level overrides in the dashboard:

1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account.
2. Go to **Magic Firewall** > **Managed rules**.
3. In front of **Magic Firewall Managed ruleset**, select **Manage**.
4. Select **Browse rules**.
5. In the rule you need to change, select an **Action** from the drop-down to change its action, or use the toggle to disable or enable the rule.
6. Select **Next**.
7. Select **Save**.
1. In the Cloudflare dashboard, go to the **Magic Firewall** page.

<DashButton url="/?to=/:account/network-security/magic_firewall" />

2. In the **Managed rules** tab, locate the Magic Firewall managed ruleset you want to add rule-overrides to and select **Manage**.
3. Select **Browse rules**.
4. In the rule you need to change, select an **Action** from the drop-down to change its action, or use the toggle to disable or enable the rule.
5. Select **Next**.
6. Select **Save**.

The Cloudflare dashboard should now show you the rule-level override you have set.

### Delete Magic Firewall managed ruleset.

1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account.
2. Go to **Magic Firewall** > **Managed rules**.
3. Select **Manage**.
4. Select **Delete deployment**.
1. In the Cloudflare dashboard, go to the **Magic Firewall** page.

<DashButton url="/?to=/:account/network-security/magic_firewall" />

2. In the **Managed rules** tab, locate the Magic Firewall managed ruleset you want to delete and select **Manage**.
3. Select **Delete deployment**.

Your Magic Firewall managed ruleset is now deleted.
14 changes: 9 additions & 5 deletions src/content/docs/magic-firewall/tutorials/graphql-analytics.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,8 @@ reviewed: 2022-03-02
difficulty: Medium
---

import { DashButton } from "~/components";

Use the GraphQL Analytics API to review data for Magic Firewall network traffic related to rules matching your traffic. This contains both rules you configured in the Magic Firewall dashboard, and the rules managed by Cloudflare as a part of [Magic Firewall Managed rules](/magic-firewall/how-to/enable-managed-rulesets/) and [Magic Firewall IDS](/magic-firewall/about/ids/) features.

Before you begin, you must have an [API token](/analytics/graphql-api/getting-started/authentication/). For additional help getting started with GraphQL Analytics, refer to [GraphQL Analytics API](/analytics/graphql-api/).
Expand All @@ -29,11 +31,13 @@ To construct a Magic Firewall GraphQL query for an object, you will need a Cloud

To construct queries to gather analytics for a particular rule, you need the rule ID for each firewall rule.

1. Log in to your [Cloudflare dashboard](https://dash.cloudflare.com/login), and select you account.
2. Select **Magic Firewall**.
3. Locate the rule you need the rule ID for from the list, and select **Edit**.
4. Locate the **Rule ID**, and select the copy button.
5. Select **Cancel** to return to the **Magic Firewall** page.
1. In the Cloudflare dashboard, go to the **Magic Firewall** page.

<DashButton url="/?to=/:account/network-security/magic_firewall" />

2. In the **Custom rules** tab, locate the rule you need the rule ID for from the list and select the three dots > **Edit**.
3. Locate the **Rule ID** and select the copy button.
4. Select **Cancel** to return to the **Magic Firewall** page.

## Explore GraphQL schema with Magic Firewall query example

Expand Down