Skip to content

WAF fields

The Web Application Firewall (WAF) contains rules managed by Cloudflare to block requests that contain malicious content.

WAF Action

ValueActionDescription
0UnknownTake no other action.
1AllowBypass all subsequent WAF rules.
2DropBlock with an HTTP 403 response.
3Challenge AllowIssue a Managed Challenge.
4Challenge DropUnused.
5LogTake no action other than logging the event.

Deprecated fields for internal Cloudflare use

The values of these fields are subject to change by Cloudflare at any time and are irrelevant for customer data analysis:

  • WAFFlags
  • WAFMatchedVar

Was this helpful?

Yes No