The following settings are not only important for Security, and Maintenance, but also to ensure your plugins work properly. Some of the plugins send out data, but some loop back for confirmation so please make sure you go through all 6 steps below and feel free to reach out to us if you have any questions about any of it!
1. DNS

2. Security > Settings > Bot Traffic

Scroll down more and…

Scroll down more and…

ย
3. Security > WAF > Firewall Rules
See rules below screen shot (just copy and paste them)

|
Rule#1 – Block Russia, China, India and Africa: Should look like this when done… (click image to enlarge) |
Rule#2 – Block WP login and admin outside of US: Should look like this when done… (click image to enlarge) |
4. SSL / TLS

5. SSL/TLS > Edge Certificates > Always Use HTTPS

6. Let us know when this is done, simply reply to the email you received when asked to set these settings and say “All Cloudflare settings have been set now!”.
WAF Rules We Recommend for Cloudflare


