Cloudflare WAF blocking custom SQL

JoshBridgement · November 10, 2021, 2:37pm

Expected behavior

Charts that use a Custom SQL data source should not trigger basic generic security layers such as Cloudflare WAF. Sending the raw SQL as the payload seems to have this effect

Actual behavior

Cloudflare WAF and similar services (including Sqreen) will automatically block the request with a HTTP 403

Context

We imagine Custom SQL is a popular feature and considering how widespread security tools like cloudflare are, we were wondering if there is a recommended approach to this problem

jeffladiray · November 10, 2021, 2:46pm

Hey @JoshBridgement

Indeed, we have a few issues with Cloudflare WAF services.
If you have on hand the list of WAF rules triggered, may I ask you to share these here or as DM?
(That is useful for us, since Custom SQL aren’t the only source of issues we encounter with Cloudflare)

Sadly, the only workaround we’ve found so far is to either disable the WAF services on specific routes or on the whole /forest namespace.

JoshBridgement · November 10, 2021, 2:50pm

Thanks - I have sent you a list of the affected WAF services

Topic		Replies	Views
Message "Forbidden" when trying to create a chart Help me!	12	478	September 2, 2022
'statWithParameters' access forbidden on xxxxx and this chart cannot be rendered Help me!	10	472	March 1, 2022
"Cannot reach your data" error on segment Help me!	29	615	April 29, 2021
Access forbidden on user Help me!	19	1037	March 4, 2021
Bad request on segment without info Help me!	3	345	June 3, 2020

Cloudflare WAF blocking custom SQL

Expected behavior

Actual behavior

Context

Related Topics