Blocking bot access via the IP address
I can’t see that there is a way to do this with Cloudflare but I get a huge amount of bot traffic hitting a site that’s installed on an AWS server, but going straight to the IP address. So for example we might see http://192.168.0.1/.git hitting our Wordfence firewall. Is there any way I can block these before they hit Wordfence without killing the site. We get maybe 40,000 hits like this per week. Obviously a DNS based firewall like Cloudflare is effectively bypassed sadly.
2 Replies
The simplest is only allow Cloudflare IPs to reach your service.
Cloudflare Docs
Secure your origin | Cloudflare Learning Paths
Your origin server ↗ is a physical or virtual machine that is not owned by Cloudflare and hosts your application content (data, webpages, etc.).