Firewall rules

I have the following filters set in my cloudflare firewall in this specific order:

• JS Challenge PK and CN: (ip.geoip.country in {"PK" "CN"})
• Protect action in notes.ekvastra.in: (http.host eq "notes.ekvastra.in" and http.request.uri.query contains "action=")
• Allow wiki sitemap: (http.request.full_uri eq "https://wiki.ekvastra.in/doku.php?do=sitemap")
• Protect do in wiki.ekvastra.in: (http.host eq "wiki.ekvastra.in" and http.request.uri.query contains "do=")

I also have rate limiting implemented for login attempts. 5 requests per 5 minutes is allowed then block for 15 minutes, allow only POST method.

I also have three "page rules" to:

• improve caching of podcast.ekvastra.in/media/*
• page redircet of www.ekvastra.in to https://ekvastra.in
• page redirect of wiki.ekvastra.in to https://wiki.ekvastra.in/doku.php.