6G rules block Cloudflare plugin JavaScript

  • The 6G firewall rules include this line:

    RedirectMatch 403 config\.

    This prevents the file /wp-content/plugins/cloudflare/config.js from loading. Of course, I can just comment the rule out but it would be nice if you could update the blacklist to take this file into account. In the meantime I’m working out a regex I can use in this rule’s place.

    The page I need help with: [log in to see the link]

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, you can use the Custom Rules tab under Firewall rules to customize the 6G code.

    Let me know if you need more information or help.

    Kind regards

    Hi,
    could you please share custom rule for /wp-content/plugins/cloudflare/config.js?

    I don’t want to disable 6G rules.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    @mubasshir, you need to exclude RedirectMatch 403 config\. from the 6G rules and add the new custom code in the Custom Rules tab.

    Kind regards

    Thanks for the response.
    Removal is easy, could you tell me what rule I should put?

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, you will add the same rules added to the .htaccess file when the feature is enabled minus the following enty RedirectMatch 403 config\.

    Let me know if the above makes sense.

    Kind regards

    Thread Starter Chris J. Z?hller

    (@seezee)

    @mubasshir,

    Find this block in .htaccess:

    <IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{QUERY_STRING} ftp:     [NC,OR]
RewriteCond %{QUERY_STRING} http:    [NC,OR]
RewriteCond %{QUERY_STRING} https:   [NC,OR]
RewriteCond %{QUERY_STRING} mosConfig [NC,OR]
RewriteCond %{QUERY_STRING} ^.*(globals|encode|localhost|loopback).* [NC,OR]
RewriteCond %{QUERY_STRING} (\;|'|\"|%22).*(request|insert|union|declare|drop) [NC]
RewriteRule ^(.*)$ - [F,L]
</IfModule>

    Add this line to the end, before the closing </IfModule>:

    RewriteCond %{REQUEST_URI} !cloudflare\/config\.js$ [L]

    Reload Apache & go to the plugin admin screen to see if the javascript loaded.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘6G rules block Cloudflare plugin JavaScript’ is closed to new replies.