Cloudflare Docs
Visit Logs on GitHub
Set theme to dark (⇧+D)

WAF fields

The Web Application Firewall (WAF) contains rules managed by Cloudflare to block requests that contain malicious content.

WAF Action

0UnknownTake no other action.
1AllowBypass all subsequent WAF rules.
2BlockBlock with an HTTP 403 response.
3Challenge AllowIssue a Managed Challenge.
4Challenge DropUnused.
5LogTake no action other than logging the event.

Deprecated fields for internal Cloudflare use

The values of these fields are subject to change by Cloudflare at any time and are irrelevant for customer data analysis:

  • WAFFlags
  • WAFMatchedVar