WAF rules for PRO plan
Hello!
I have my pterodactyl panel proxied thru cloudflare, and i was looking to improve my cloudflare WAF rules.
1 Reply
Currently i have a ratelimiting rules for 250 in 10 seconds
On custom rules:
A ip whitelist rule
and a basic block for known bots
((cf.client.bot) or
(http.user_agent contains "curl") or
(http.user_agent contains "python") or
(http.user_agent contains "Go-http-client") or
(http.user_agent contains "wget") or
(http.user_agent contains "libwww-perl")) and
what else should i do?
Mh
i was looking again at my WAF rules
i had rate limits at 300, and it didn't handle, i putted it at 150 and it did fine i think, as i don't want to block actual users, but i'm still looking for improved WAF rules,
currently i have whitelisting ip rules and good bots
and a basic bot rule for
((cf.client.bot) or
(http.user_agent contains "curl") or
(http.user_agent contains "python") or
(http.user_agent contains "Go-http-client") or
(http.user_agent contains "wget") or
(http.user_agent contains "libwww-perl"))
what else should i do?