Simple Firewall Question

Hello what is the default firewall rule for communication between the sub domaines of a domaine it i allowed or denied ? i did find nothing in the documentation
5 Replies
Chaika
Chaika2mo ago
You mean for like fetching data between and such? You're subject to CORS and CORP Browser level stuff but Cloudflare only really has the Referrer header/Origin header for CORS requests and doesn't do anything special by default.
A-Dev
A-DevOP2mo ago
Okey i see and another question if its okay , i have a ignore rules for subdomaine like test.exemple.com But in the analysis of the traffic of this waf rule Is the most ignore url is app.exemple.com And i really dont know why ( im new to cloudflare or any security related subject hahahaha ) so still discovering the tool and the principles
Chaika
Chaika2mo ago
can you clarify what you mean by that? You have a rule that is supposed to only match a subdomain but you see it matching other subdomains?
A-Dev
A-DevOP2mo ago
yes exactly my rule is set for app.example.com but in the rule logs i see she got applied on all example.com urls ( app1.example.com , app2.example.com ....)
Chaika
Chaika2mo ago
What does your rule look like? If you use the account level trace option (https://dash.cloudflare.com/?to=/:account/trace/search), with a subdomain that shouldn't match, you can see it match there as well?
Want results from more Discord servers?
Add your server