If CloudFlare is in use and you want to add Sucuri’s WAF/Firewall protection to it, this guide should help you get that configured. First, this is how the traffic flow will be:
With that in mind, we’ll need to setup the following:
- CloudProxy pointing to Hosting Provider, as normally it is.
- Cloudflare pointing to CloudProxy. Note: If you find this complicated, open a support ticket with Sucuri and their team will get you all setup.
Step by step.
- Enable the CDN option on the CloudProxy Dashboard setting it to CloudFlare. Just like this image:
On CloudProxy we need to make sure that the
internal(hosting) IP address is actually pointing to your hosting company IP address and not CloudFlare. If the site was previously live at CloudFlare when you added it, you will need to manually edit the internal IP address to point to your hosting.
- Inside CloudFlare’s Zone File for your domain, you need to add our Firewall IP address in there:
- Ensure CloudFlare is set to active with the
That’s it. For the other CDN providers, the process should be similar.