Changelog | DDoS protection

DDoS protection - Scheduled for 2024-04-29

Fri, 19 Apr 2024 00:00:00 GMT

Announcement Date	Change Date	Rule ID	Description	Previous Action	New Action	Notes
N/A	N/A	N/A	N/A	N/A	N/A	N/A

DDoS protection - 2024-04-19

Fri, 19 Apr 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
	HTTP requests with unusual HTTP headers or URI path (signature #66).	N/A	block

DDoS protection - 2024-04-16

Tue, 16 Apr 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
	HTTP requests with unusual HTTP headers or URI path (signature #64).	N/A	block
	HTTP requests with unusual HTTP headers or URI path (signature #65).	N/A	block

DDoS protection - 2024-04-04

Thu, 04 Apr 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...177059f1	HTTP requests from known botnet (signature #31).	log	N/A
...7b231fb2	HTTP requests from known botnet (signature #81).	N/A	block

DDoS protection - 2024-04-02

Tue, 02 Apr 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...d2f294d7	HTTP requests trying to impersonate browsers.	ddos_dynamic	ddos_dynamic	Update the rule to match to block attacks more consistently.

DDoS protection - 2024-02-26

Mon, 26 Feb 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...6831bff1	HTTP requests with unusual HTTP headers or URI path (signature #35).	block	block	Extend the rule to catch attacks more comprehensively.
...e269dfd6	HTTP requests with unusual HTTP headers or URI path (signature #56).	block	block	Extend the rule to catch attacks more comprehensively.

DDoS protection - 2024-02-19

Mon, 19 Feb 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...0fbfd5ae	HTTP requests from known botnet (signature #32).	block	ddos_dynamic
...22807318	HTTP requests from known botnets.	ddos_dynamic	ddos_dynamic	Expand rule logic to catch more attacks.
...3ad719cd	HTTP requests from known botnet (signature #79).	ddos_dynamic	ddos_dynamic	Expand the rule scope to catch more attacks.

DDoS protection - 2024-02-12

Mon, 12 Feb 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...c47bdca6	HTTP requests with unusual HTTP headers or URI path (signature #62).	N/A	block

DDoS protection - 2024-02-08

Thu, 08 Feb 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...3a679c52	Requests coming from known bad sources.	ddos_dynamic	managed_challenge	Expand the rule to mitigate on all zones.

DDoS protection - 2024-02-06

Tue, 06 Feb 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...1fc1e601	HTTP requests with unusual HTTP headers or URI path (signature #31).	block	block	Modify characteristics of the unusual HTTP headers or URI path.
...3a679c52	Requests coming from known bad sources.	N/A	ddos_dynamic
...3ad719cd	HTTP requests from known botnet (signature #79).	ddos_dynamic	ddos_dynamic	Expand the scope of the rule to match more attacks.

DDoS protection - 2024-02-05

Mon, 05 Feb 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...22807318	HTTP requests from known botnets.	ddos_dynamic	ddos_dynamic	Extend the rule to catch more attacks.

DDoS protection - 2024-01-26

Fri, 26 Jan 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...3ad719cd	HTTP requests from known botnet (signature #79).	N/A	ddos_dynamic
...61bc58d5	HTTP requests with unusual HTTP headers or URI path (signature #55).	managed_challenge	managed_challenge	Expanded the scope of the rule to catch attacks more consistently.

DDoS protection - 2024-01-25

Thu, 25 Jan 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...1fc1e601	HTTP requests with unusual HTTP headers or URI path (signature #31).	block	block	Add more characteristics to the unusual HTTP headers or URI path.

DDoS protection - 2024-01-23

Tue, 23 Jan 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...1fc1e601	HTTP requests with unusual HTTP headers or URI path (signature #31).	block	block	Add more characteristics to the unusual HTTP headers or URI path.
...2de94fb2	HTTP requests with unusual HTTP headers or URI path (signature #3).	ddos_dynamic	block	Expand rule scope to catch more attacks.
...2f8d9a4f	HTTP requests from known botnet (signature #78).	N/A	block

DDoS protection - 2024-01-05

Fri, 05 Jan 2024 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...2de94fb2	HTTP requests with unusual HTTP headers or URI path (signature #3).	block	block	Fine-tune the characteristics of the unusual requests.
...177059f1	HTTP requests from known botnet (signature #31).	block	N/A	Removed due to false positives.
...6fe7a312	HTTP requests from known botnet (signature #70).	block	N/A	Removed due to false positives.
...82c0ed5f	HTTP requests from known botnet (signature #77).	N/A	block
...e4f3ea4d	HTTP requests from known botnet (signature #76).	N/A	block

DDoS protection - 2023-12-19

Tue, 19 Dec 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...1fc1e601	HTTP requests with unusual HTTP headers or URI path (signature #31).	block	block	Add more characteristics to the unusual HTTP headers or URI path.
...22807318	HTTP requests from known botnets.	log	ddos_dynamic	Extend the rule to catch more attacks.
...d2f294d7	HTTP requests trying to impersonate browsers.	ddos_dynamic	ddos_dynamic	Change the rule to catch more attacks.

DDoS protection - 2023-12-14

Thu, 14 Dec 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...6fe7a312	HTTP requests from known botnet (signature #70).	block	block	Tweak the rule to avoid false positives in some rare cases.

DDoS protection - 2023-12-08

Fri, 08 Dec 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...6fe7a312	HTTP requests from known botnet (signature #70).	block	block	Updated the rule to avoid false positives in some rare circumstances.
...e7a37252	HTTP requests from known botnet (signature #75).	N/A	block

DDoS protection - 2023-11-29

Wed, 29 Nov 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...8ed59b32	HTTP requests with unusual HTTP headers or URI path (signature #61).	ddos_dynamic	ddos_dynamic	Rename rule to avoid confusion.
...61e8d513	Global L7 WordPress attack mitigations (Deprecated)	ddos_dynamic	ddos_dynamic	Mark rule as deprecated.

DDoS protection - 2023-11-22

Wed, 22 Nov 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...254da96a	HTTP requests with unusual HTTP headers or URI path (signature #58).	log	block

DDoS protection - 2023-11-13

Mon, 13 Nov 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...22807318	HTTP requests from known botnets.	ddos_dynamic	ddos_dynamic	Improve this filter to catch more attacks.
...6fe7a312	HTTP requests from known botnet (signature #70).	block	block
...7c7a2f25	HTTP requests from known botnet (signature #74).	N/A	block
...d2f294d7	HTTP requests trying to impersonate browsers.	ddos_dynamic	ddos_dynamic

DDoS protection - 2023-11-10

Fri, 10 Nov 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...7d0f1e5f	HTTP requests from known botnet (signature #72).	N/A	block
...94547a95	HTTP requests with unusual HTTP headers or URI path (signature #59).	N/A	ddos_dynamic
...e269dfd6	HTTP requests with unusual HTTP headers or URI path (signature #56).	log	block	Enable filter early to mitigate widespread impact.
...f35a42a0	HTTP requests with unusual HTTP headers or URI path (signature #57).	log	block	Enable filter early to mitigate widespread impact.

DDoS protection - 2023-10-19

Thu, 19 Oct 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...61bc58d5	HTTP requests with unusual HTTP headers or URI path (signature #55).	ddos_dynamic	ddos_dynamic	Requests will be challenged by default, larger attacks are blocked.

DDoS protection - 2023-10-11

Wed, 11 Oct 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...35675e08	HTTP requests with unusual HTTP headers or URI path (signature #24).	block	block	This rule can cause rare false positives with custom apps sending invalid headers.

DDoS protection - 2023-10-09

Mon, 09 Oct 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action
...02bbdce1	HTTP requests with unusual HTTP headers or URI path (signature #47).	N/A	block
...493cb8a8	HTTP requests with unusual HTTP headers or URI path (signature #52).	N/A	block
...5c344623	HTTP requests from uncommon clients	N/A	block
...6363bb1b	HTTP requests with unusual HTTP headers or URI path (signature #48).	N/A	block
...c1fbd175	HTTP requests trying to impersonate browsers (pattern #4).	N/A	block

DDoS protection - 2023-09-24

Sun, 24 Sep 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...0fb54442	HTTP requests with unusual HTTP headers or URI path (signature #49).	N/A	block
...3dd5f188	HTTP requests from known botnet (signature #71).	N/A	block
...97003a74	HTTP requests with unusual HTTP headers or URI path (signature #17).	block	block	Expand rule to catch more attacks.

DDoS protection - 2023-09-21

Thu, 21 Sep 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...1d73128d	HTTP requests from known botnet (signature #56).	block	block	Make the rule customizable as it might cause false positive in rare cases.
...4a95ba67	HTTP requests with unusual HTTP headers or URI path (signature #32).	ddos_dynamic	ddos_dynamic	Expand the scope of the rule to catch more attacks.
...6fe7a312	HTTP requests from known botnet (signature #70).	block	block	Update the rule to remove some rare false positives.

DDoS protection - 2023-09-05

Tue, 05 Sep 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...22807318	HTTP requests from known botnets.	ddos_dynamic	ddos_dynamic	Expand filter to catch attacks more comprehensively.
...4346874d	HTTP requests with unusual HTTP headers or URI path (signature #46).	N/A	block
...6fe7a312	HTTP requests from known botnet (signature #70).	N/A	block	Expand filter to catch more attacks. It is now configurable.

DDoS protection - 2023-08-30

Wed, 30 Aug 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...22807318	HTTP requests from known botnets.	ddos_dynamic	ddos_dynamic
...46082508	HTTP requests with unusual HTTP headers or URI path (signature #45).	N/A	block

DDoS protection - 2023-08-29

Tue, 29 Aug 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...22807318	HTTP requests from known botnets.	managed_challenge	ddos_dynamic
...3fe55678	HTTP requests with unusual HTTP headers or URI path (signature #44).	N/A	block

DDoS protection - 2023-08-25

Fri, 25 Aug 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...20c5afb5	HTTP requests with unusual HTTP headers or URI path (signature #36).	block	block	This rule was previously readonly, but can cause false positives in rare cases. It is now possible to override it.
...cb26e2e2	HTTP requests from known botnet (signature #69).	N/A	block
...ebff5ef1	HTTP requests with unusual HTTP headers or URI path (signature #43).	N/A	block

DDoS protection - 2023-08-16

Wed, 16 Aug 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...9721fd20	HTTP requests trying to impersonate browsers (pattern #3).	N/A	ddos_dynamic

DDoS protection - 2023-08-14

Mon, 14 Aug 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...22807318	HTTP requests from known botnets.	ddos_dynamic	managed_challenge	Expand the filter to catch more attacks.
...d2f294d7	HTTP requests trying to impersonate browsers.	ddos_dynamic	ddos_dynamic	Expand the filter to catch more attacks.

DDoS protection - 2023-08-11

Fri, 11 Aug 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action
...1de9523e	HTTP requests with unusual HTTP headers or URI path (signature #41).	N/A	block
...22807318	HTTP requests from known botnets.	managed_challenge	ddos_dynamic
...aa03a345	HTTP requests from known botnet (signature #68).	N/A	block
...efca86eb	HTTP requests from known botnet (signature #66).	N/A	block
...f93fb5d6	HTTP requests from known botnet (signature #67).	N/A	block

DDoS protection - 2023-07-31

Mon, 31 Jul 2023 00:00:00 GMT

Rule ID	Description	Previous Action	New Action	Notes
...9aec0913	HTTP requests from known botnet (signature #52).	block	block	Expose existing read-only filter publicly as it might cause false positives in rare cases.
...c5f479f0	HTTP requests from known botnet (signature #62).	N/A	block
...d0e36f9c	HTTP requests from known botnet (signature #63).	N/A	block