Hopefully it’s helpful, but I also wrote a general guide to the best settings here:
A Cloudflare staff member also added some pointers and corrections in the comments section.
I’m updating that guide and was trying to see if there was any new advice from Discourse and found this page.
I will be adding these to my managed rules. Thank you!
Here’s an overview of my custom rules. This has really help reduce spam and often times (not always) some of the lowest quality traffic comes in via VPNs and DC traffic which these have helped:
I will make a proper write-up with the full contents of the rules, have been running these for about 6 months and validating their success by using the Log Explorer tool and inspecting 10k events at a time.
2 Likes
I am trying to understand Cloudflare integration using the free version before using it on a new discourse site. Can anyone expound on these with specifics / examples? Assume the discourse site is: ‘discourse. abc123. com’
(1) Cloudflare seems to remove the origin nginx security headers I currently have?
(2) I don’t undestand these comments: “If you decide to enable the CloudFlare CDN (orange cloud) you need to take one more step and establish a page rule for the address of your Discourse instance. The rule needs to ‘Disable Performance’ (I don’t see that option) which will turn off the CloudFlare features which are well documented to interfere with Discourse.” AND Create the following page rules at dash.cloudflare.com/?to=/:account/:zone/rules:
Also anything other gotcha’s I should handle.
Thanks in advance.
