Access analytics
I have a rule in Cloudflare Access allowing access from 1.2.3.4/24 (to my tunnel endpoint). If a connection is blocked, I don’t care. If it’s allowed, I want to see some analytics, if possible IP addresses, browser etc. This allows me see if people are trying vulnerabilities on my website.
There won’t be many visitors.
Can this be done and how?
3 Replies
Under Logs -> Access you can see some information. If your policy is
Allow (they go through an IDP), you get their email/user id/ip/country. for Service Auth just the IP / country. For Bypass it skips it entirely.
If you've got Pro or higher you have Web Traffic Analytics, they're not proper "Logs" but they are Analytics. You can drill down with specific filters:
Each of those fields are ones you can scope into further with. Requests by specific IP, UA, Path, etc, you could filter out blocked
(I'm assuming you mean a Public Hostname - http traffic for all this. If this is Private Networking w/ WARP wouldn't get)