Skip to content
Cloudflare Docs

IP Access rules actions

An IP Access rule can perform one of the following actions:

  • Block: Prevents a visitor from visiting your site.

  • Allow: Excludes visitors from all security checks, including Browser Integrity Check, Under Attack mode, and the WAF. Use this option when a trusted visitor is being blocked by Cloudflare's default security features. The Allow action takes precedence over the Block action.
    Allowing a given country code will not bypass WAF managed rules (previous and new versions). Refer to Important remarks about allowing/blocking by country for more information.

  • Managed Challenge: Depending on the characteristics of a request, Cloudflare will dynamically choose the appropriate type of challenge from a list of possible actions. For more information, refer to Interstitial Challenge Pages.

  • Non-Interactive Challenge: Presents a non-interactive challenge page to visitors. Prevents bots from accessing the site.

  • Interactive Challenge: Requires the visitor to complete an interactive challenge before visiting your site. Prevents bots from accessing the site.