Cloudflare, Inc.
VALIDATING FIREWALL RULES USING DATA AT REST

Abstract:

A control server receives configuration data from a domain owner device associated with a domain owner of a resource, where the resource is hosted by an origin server. The control server uses the configuration data to generate a firewall rule to apply to requests directed to the resource and received by the edge server. The control server retrieves test traffic relevant to the firewall rule and applies the firewall rule to the test traffic. The control server determines an outcome from applying the firewall rule to the test traffic and, based on an input from the domain owner device, performs an action on the firewall rule.