Cloudflare ratelimit are block access with has WAF Skip
i use plesk panel with port 8443 and i add example.com:8443 in to WAF rule action skip
bug cloudflare are block me with 429 error
i try to add example.com without port, so block access too
34 Replies
Do you have a rate limit created? If not, it may be coming from your origin
If you do:
What does match section look like?
What does the firewall event (Security -> Events) blocking you say (blur any sensitive details)
The hostname you're matching in Custom Rules doesn't include the port (ex: remove :8443)
in rule are has port 8443 and without port (same hostname)
I just tested that exact setup and it works fine for me, using Custom Rule to bypass and testing on alt port on free plan
That event you showed before was older, it can take a bit for new custom rules to apply
What's your rate limit rule?
I have set it up more than 1 week ago. it has problem only has port in hostname
may i will try to delete and create new WAF rule
You can just do Edit Expression ->
true if your goal is to match everything
You don't have any other Custom rules then the skip one?
You could also turn on Logging to ensure they're hitting the skip rule
What are you skipping in the other ones? Like in the Known AS Num & User Agent
If that one came before your skip rate lmit rule, it would skip it if the ASN matched "All Remaining Custom Rules"
but it not same
Cloudflare also has a really helpful tool for this now called "Trace", in your account overview. You can enter all of the details of the request and see what it would hit
this as num is 32934 Facebook 132892 Cloudflare
You blurred the blocked request so I have no idea what that one was
can direct message
Sure, I would try The Trace Account tool as well (can find it in your account home), it'll show you if your custom rule is working right to avoid rate limit or not
ex: with no custom rule
with a custom rule skipping rate limiting, you can see it skips it
just drop the port, it shouldn't matter anyway, your custom rule would match on either
So your Known As num & User Agent Rule is matching and preventing the rate limit rule from being skipped
it skip with AS132892
i has move rule too
Which is the one there that skips rate limiting? Server & Websocket?
Server & Websocket yes
can you read my dm, i will not blur image
sure