Firewall rules

I have the following filters set in my cloudflare firewall in this specific order:

  • JS Challenge PK and CN: (ip.geoip.country in {"PK" "CN"})
  • Protect action in notes.ekvastra.in: (http.host eq "notes.ekvastra.in" and http.request.uri.query contains "action=")
  • Allow wiki sitemap: (http.request.full_uri eq "https://wiki.ekvastra.in/doku.php?do=sitemap")
  • Protect do in wiki.ekvastra.in: (http.host eq "wiki.ekvastra.in" and http.request.uri.query contains "do=")

I also have rate limiting implemented for login attempts. 5 requests per 5 minutes is allowed then block for 15 minutes, allow only POST method.

I also have three "page rules" to: