Sorry, you have been blocked

Hey guys, wondering if anyone has any insight on the error I am getting for multiple websites that utilize Cloudflare's services. this error is happening across multiple browsers, multiple devices on the same network and completely different websites, especially websites I have never even been to. In this thread: https://discord.com/channels/595317990191398933/1221836733486862397/1221836733486862397 idle.cool was mentioned, and for me, this gives me the same error. (I have never been to idle.cool) I can turn on a VPN, and access the same websites without issue using the same browser, user agents, etc. I've also looked at some IP reputation tools, and nothing says anything definitively bad about my IP. anyone have any ideas?
No description
No description
22 Replies
Chaika
Chaika•4mo ago
I mean the root solution is always going to be ?waf-block
Flare
Flare•4mo ago
If you are blocked by a website that uses Cloudflare, you need to contact the website owner to appeal or investigate the block. Cloudflare is configured by the site owner, and Cloudflare will not overwrite the configuration of any customer. Nobody in this Discord nor any Cloudflare employee will be able to help you. The site owner can investigate why you were blocked through your ray id.
Chaika
Chaika•4mo ago
but can try to see threat score: https://threat.score.chaika.me/ and such, something common is throwing them off
bacon
baconOP•4mo ago
hm, that said my threat score was 0. I just don't get how contacting the site owners would solve the root issue, if it's happening across multiple sites and when they didn't configure the block in the first place
Chaika
Chaika•4mo ago
The Site owners configure and control the entire security setup on their website discord.com uses Cloudflare. Obviously you are not blocked from here lol hmm I think I see something curious, can you see your ip location here: https://chaika.dev/ ? or DM me your ip? It kinda looks like your IP isn't in the GeoIP DBs if it's the same one I'm seeing here
bacon
baconOP•4mo ago
should be like 135.x.x.x I'm unfamiliar with the configurations behind cloudflare's security options. Is there any way I can appeal this through Cloudflare? If website owners have certain configurations that come from Cloudflare, cloudflare has supplied the website with a block that includes by IP. I've had this IP for at least 6 months and only now I am noticing this issue, really unsure why.
Chaika
Chaika•4mo ago
So it looks like it's not in Maxmind's GeoIP Db which CF and a lot of other companies use: https://www.maxmind.com/en/geoip-demo, can input there
Chaika
Chaika•4mo ago
If you know where it's supposed to be you could manually submit a data correction: https://www.maxmind.com/en/geoip-location-correction It's something really your ISP should be doing/keeping up to date but they're clearly not if it's been 6 months lol
Correct a GeoIP Location | MaxMind
Use this form to update the location associated with an IP or IP range. In some cases, we accept batch corrections if you have multiple corrections you would like to submit.
Chaika
Chaika•4mo ago
Since your IP doesn't have a specific geoip you'd be blocked by any rule like "Country not in approved list" or "Country != US", etc
bacon
baconOP•4mo ago
right, I actually do use their GeoIP2-City db on my website that I host (website does not use cloudflare)
Chaika
Chaika•4mo ago
yea, I can see from CF's side when you visited that url that it has no idea which country/asn you are
No description
Chaika
Chaika•4mo ago
best case is you submit correction or get ISP to do so, and then CF updates their maxmind every few weeks and it'd pull in the correction, or you could try asking the specific site owner to make a special exception for you
bacon
baconOP•4mo ago
that's odd, why might it not be in maxminds db? you can easily find my general location from like opentracker.net for example
Chaika
Chaika•4mo ago
The GeoIP Industry is a mess is the short version lots try to pull from what's provided by the RIR/whois, some don't. Some try to ping world-wide and guess, some don't. Really though it's your ISP's responsiblity to submit to all of them and submit geofeeds, which they clearly haven't, at least not to maxmind CF just pulls from maxmind, I'm not aware of any special postprocessing or anything they do it, which means your best bet is getting them to show right/submit a correction
bacon
baconOP•4mo ago
alright, I submitted the request through maxmind, but I really just don't get why this is only now an issue. based on some logs I looked through I had this IP for the past nine months at least. thanks for the input 🙂
Chaika
Chaika•4mo ago
that is weird. I just noticed now something even weirder that your IPs neighbors have proper geoips too usually it'd be the entire prefix/24 maybe maxmind did mess up and not your ISP lol, well here's hoping they fix it it might also work to just try to get a new IP from them then. Some ISPs will switch if your router is off for ~5 mins or so/when the router's dhcp session expires, or you could just call and ask
bacon
baconOP•4mo ago
right, I might reach out to them to do that. I guess I haven't actually tried unplugging my ONT for >30 mins. it's a local ISP, so I dunno how helpful theyre gonna be.
Chaika
Chaika•4mo ago
I would naively think local ISPs would be more helpful then big ones because they might actually understand you even if you explain the full issue/higher chance of getting someone who cares
bacon
baconOP•4mo ago
true
Chaika
Chaika•4mo ago
ultimately the IP they gave you is part of the service/what you're paying for, their issue if it's getting you blocked from sites and such
Idle
Idle•4mo ago
hey, I'm the owner of idle.cool. nobody except me is currently able to access my site because it's under mTLS lockdown. If you want I can let you know when it's publicly accessible again as chaika pointed out, being served a block page is almost always caused by the site you are trying to connect to and isn't a cloudflare issue
bacon
baconOP•4mo ago
yeah you could let me know and I can try it again
Want results from more Discord servers?
Add your server