WAF fields
The Web Application Firewall (WAF) contains rules managed by Cloudflare to block requests that contain malicious content.
| Value | Action | Description |
|---|---|---|
0 | Unknown | Take no other action. |
1 | Allow | Bypass all subsequent WAF rules. |
2 | Drop | Block with an HTTP 403 response. |
3 | Challenge Allow | Issue a Managed Challenge. |
4 | Challenge Drop | Unused. |
5 | Log | Take no action other than logging the event. |
The values of these fields are subject to change by Cloudflare at any time and are irrelevant for customer data analysis:
- WAFFlags
- WAFMatchedVar
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Products
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark