Cloudflare Firewall Rules
Cloudflare Firewall Rules allows you to create rules that inspect incoming traffic and block, challenge, log, or allow specific requests.
Main features
- Rule-based protection: Use pre-defined rulesets provided by Cloudflare, or define your own firewall rules. Create rules in the Cloudflare dashboard or via API.
- Complex custom rules: Each rule’s expression can reference multiple fields from all the available HTTP request parameters and fields, allowing you to create complex rules.
Availability
Cloudflare Firewall Rules is available to all customers. However, the number of active firewall rules you can have and support for the Log action and regular expressions depend on your Cloudflare plan.
This table outlines the Firewall Rules features and entitlements available with each customer plan:
| Cloudflare plan | ||||
| Feature | Free | Pro | Business | Enterprise |
| Active rules | 5 | 20 | 100 | 1,000 |
| Supported actions | All except Log | All except Log | All except Log | All |
| Regular expression support | No | No | Yes | Yes |
| Number of IP Lists | 1 | 10 | 10 | 10 |
Next steps
Unless you are already an advanced user, refer to Expressions and Actions to learn more about the basic elements of firewall rules.
To get started building your own firewall rules, refer to one of the following pages:
You can also manage firewall rules through Terraform. For more information, refer to Getting Started with Terraform.
Related resources
For additional information, refer to the following pages: