Simple Firewall Question
Hello what is the default firewall rule for communication between the sub domaines of a domaine it i allowed or denied ? i did find nothing in the documentation
5 Replies
You mean for like fetching data between and such? You're subject to CORS and CORP Browser level stuff but Cloudflare only really has the Referrer header/Origin header for CORS requests and doesn't do anything special by default.
Okey i see and another question if its okay , i have a ignore rules for subdomaine like test.exemple.com
But in the analysis of the traffic of this waf rule
Is the most ignore url is app.exemple.com
And i really dont know why ( im new to cloudflare or any security related subject hahahaha ) so still discovering the tool and the principles
can you clarify what you mean by that? You have a rule that is supposed to only match a subdomain but you see it matching other subdomains?
yes exactly
my rule is set for app.example.com
but in the rule logs i see she got applied on all example.com urls ( app1.example.com , app2.example.com ....)
What does your rule look like? If you use the account level trace option (https://dash.cloudflare.com/?to=/:account/trace/search), with a subdomain that shouldn't match, you can see it match there as well?