The Web Application Firewall (WAF) contains rules managed by Cloudflare to block requests that contain malicious content.
|Unknown||Take no other action.|
|Allow||Bypass all subsequent WAF rules.|
|Block||Block with an HTTP 403 response.|
|Challenge Allow||Issue a Managed Challenge.|
|Log||Take no action other than logging the event.|
Deprecated fields for internal Cloudflare use
The values of these fields are subject to change by Cloudflare at any time and are irrelevant for customer data analysis: