CloudFlare Blocking
WAF Rules
Block Sensitive
This is to drop everything to a few sub-domains unless it is from the united states.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
(http.host in
{
"bitwarden.mindlesstux.com"
"guacamole.mindlesstux.com"
"adminer.mindlesstux.com"
"adminer.dacentec.mindlesstux.com"
"andromeda-cockpit-lan.mindlesstux.com"
"hastebin.mindlesstux.com"
"home-assistant.mindlesstux.com"
"nodered.dacentec.mindlesstux.com"
"phpmyadmin.mindlesstux.com"
"r420-cockpit-dacentec.mindlesstux.com"
"r420-ssh-dacentec.mindlesstux.com"
"routervm-cockpit-lan.mindlesstux.com"
"sshwifty-dec.mindlesstux.com"
"synology1.mindlesstux.com"
"synology2.mindlesstux.com"
" portainer.mindlesstux.com"
" ombi.mindlesstux.com"
}
and not ip.geoip.country in {"US"})
Allow Matrix
Allows all traffic for Matrix
1
2
3
(http.request.uri.path contains "/.well-known/matrix/")
or (http.request.uri.path contains "/_matrix/")
or (http.host eq "matrix.mindlesstux.com")
Allow Mastodon
Allows all traffic for Mastodon
1
(http.host eq "mastodon.mindlesstux.com")
JS Challenge
This is to drop country and ASN traffic that I find have been causing problems.
1
2
(ip.geoip.country in {"CN" "IR" "IQ" "RU" "T1" "VN"}) or
(ip.geoip.asnum in {13238 395954 9009 8100 207651 212238 203020 36352 201011 30542 201011 64249 15969 13737 60068 33576})
If source is from one of the following countries or from the Tor network the traffic will be challenged.
- China
- Iran
- Iraq
- Russian Federation
- Vietnam
If source is from one of the follwoing ASNs traffice will be challenged. Reason for being blanket challened is bot traffic and content spam that is out of control.
ASN | ASName | OrgName |
---|---|---|
13238 | YANDEX | YANDEX LLC |
395954 | LEASEWEB-USA-LAX | Leaseweb USA, Inc. |
9009 | M247 | M247 Europe SRL |
8100 | ASN-QUADRANET-GLOBAL | QuadraNet Enterprises LLC |
207651 | VDSINA-NL | Hosting technology LTD |
212238 | CDNEXT | Datacamp Limited |
203020 | HostRoyale | HostRoyale Technologies Pvt Ltd |
36352 | AS-COLOCROSSING | ColoCrossing |
201011 | CORE-BACKBONE | Core-Backbone GmbH |
30542 | MOVI-R-TECH-SOLUTIONS | MOVI-R |
201011 | CORE-BACKBONE | Core-Backbone GmbH |
64249 | ENDOFFICE | Charles River Operation |
15969 | Systemia-AS | Systemia.pl Sp. z o.o. |
13737 | AS-INCX | INCX Global, LLC |
60068 | CDN77 | Datacamp Limited |
33576 | DIG001 | Digicel Jamaica |