Field: IP SOURCE
Operator: EQUALS // IS IN // IS IN LIST (you can do a list of IP)
Value: COMPLETE IT
Action: BLOCK
This options can do it FREE (up to 5 rules) with FREE PLANS, if you pay a better plan you can have more rules. but… you must keep the list of IP up to date manualy (country IP is automatic)
This is a feature I’m currently using.
However, Cloudflare has been acting strangely when it comes to blacklists.
Until recently, we were able to block based on Threat Score in the WAF > Custom Rules menu.
But they removed this option not long ago. Their reasoning was: “We now handle it fully automatically.”
However, it’s absolutely terrible! They don’t even block IPs with an abuse score of 100, which are clearly listed in blacklists.
Blacklisted IPs roam around the site as they please, and Cloudflare is practically saying, “Welcome! How can I help you?”