WAF fields
The Web Application Firewall (WAF) contains rules managed by Cloudflare to block requests that contain malicious content.
| Value | Action | Description | 
|---|---|---|
| 0 | Unknown | Take no other action. | 
| 1 | Allow | Bypass all subsequent WAF rules. | 
| 2 | Drop | Block with an HTTP 403 response. | 
| 3 | Challenge Allow | Issue a Managed Challenge. | 
| 4 | Challenge Drop | Unused. | 
| 5 | Log | Take no action other than logging the event. | 
The values of these fields are subject to change by Cloudflare at any time and are irrelevant for customer data analysis:
- WAFFlags
- WAFMatchedVar
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Directory
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- © 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark