Sorry, you have been blocked
Hey guys,
wondering if anyone has any insight on the error I am getting for multiple websites that utilize Cloudflare's services.
this error is happening across multiple browsers, multiple devices on the same network and completely different websites, especially websites I have never even been to.
In this thread: https://discord.com/channels/595317990191398933/1221836733486862397/1221836733486862397
idle.cool was mentioned, and for me, this gives me the same error. (I have never been to idle.cool)
I can turn on a VPN, and access the same websites without issue using the same browser, user agents, etc.
I've also looked at some IP reputation tools, and nothing says anything definitively bad about my IP.
anyone have any ideas?
22 Replies
I mean the root solution is always going to be
?waf-block
If you are blocked by a website that uses Cloudflare, you need to contact the website owner to appeal or investigate the block. Cloudflare is configured by the site owner, and Cloudflare will not overwrite the configuration of any customer. Nobody in this Discord nor any Cloudflare employee will be able to help you. The site owner can investigate why you were blocked through your ray id.
but can try to see threat score: https://threat.score.chaika.me/ and such, something common is throwing them off
hm, that said my threat score was 0. I just don't get how contacting the site owners would solve the root issue, if it's happening across multiple sites and when they didn't configure the block in the first place
The Site owners configure and control the entire security setup on their website
discord.com uses Cloudflare. Obviously you are not blocked from here lol
hmm I think I see something curious, can you see your ip location here: https://chaika.dev/ ? or DM me your ip?
It kinda looks like your IP isn't in the GeoIP DBs if it's the same one I'm seeing here
should be like 135.x.x.x
I'm unfamiliar with the configurations behind cloudflare's security options. Is there any way I can appeal this through Cloudflare? If website owners have certain configurations that come from Cloudflare, cloudflare has supplied the website with a block that includes by IP.
I've had this IP for at least 6 months and only now I am noticing this issue, really unsure why.
So it looks like it's not in Maxmind's GeoIP Db which CF and a lot of other companies use: https://www.maxmind.com/en/geoip-demo, can input there
If you know where it's supposed to be you could manually submit a data correction: https://www.maxmind.com/en/geoip-location-correction
It's something really your ISP should be doing/keeping up to date but they're clearly not if it's been 6 months lol
Correct a GeoIP Location | MaxMind
Use this form to update the location associated with an IP or IP range. In some cases, we accept batch corrections if you have multiple corrections you would like to submit.
Since your IP doesn't have a specific geoip you'd be blocked by any rule like "Country not in approved list" or "Country != US", etc
right, I actually do use their GeoIP2-City db on my website that I host (website does not use cloudflare)
yea, I can see from CF's side when you visited that url that it has no idea which country/asn you are
best case is you submit correction or get ISP to do so, and then CF updates their maxmind every few weeks and it'd pull in the correction, or you could try asking the specific site owner to make a special exception for you
that's odd, why might it not be in maxminds db? you can easily find my general location from like opentracker.net for example
The GeoIP Industry is a mess is the short version
lots try to pull from what's provided by the RIR/whois, some don't. Some try to ping world-wide and guess, some don't.
Really though it's your ISP's responsiblity to submit to all of them and submit geofeeds, which they clearly haven't, at least not to maxmind
CF just pulls from maxmind, I'm not aware of any special postprocessing or anything they do it, which means your best bet is getting them to show right/submit a correction
alright, I submitted the request through maxmind, but I really just don't get why this is only now an issue. based on some logs I looked through I had this IP for the past nine months at least. thanks for the input 🙂
that is weird. I just noticed now something even weirder that your IPs neighbors have proper geoips too
usually it'd be the entire prefix/24
maybe maxmind did mess up and not your ISP lol, well here's hoping they fix it
it might also work to just try to get a new IP from them then. Some ISPs will switch if your router is off for ~5 mins or so/when the router's dhcp session expires, or you could just call and ask
right, I might reach out to them to do that. I guess I haven't actually tried unplugging my ONT for >30 mins. it's a local ISP, so I dunno how helpful theyre gonna be.
I would naively think local ISPs would be more helpful then big ones because they might actually understand you even if you explain the full issue/higher chance of getting someone who cares
true
ultimately the IP they gave you is part of the service/what you're paying for, their issue if it's getting you blocked from sites and such
hey, I'm the owner of idle.cool.
nobody except me is currently able to access my site because it's under mTLS lockdown.
If you want I can let you know when it's publicly accessible again
as chaika pointed out, being served a block page is almost always caused by the site you are trying to connect to
and isn't a cloudflare issue
yeah you could let me know and I can try it again