Need Assistance?

In only two hours, with an average response time of 15 minutes, our expert will have your problem sorted out.

Server Trouble?

For a single, all-inclusive fee, we guarantee the continuous reliability, safety, and blazing speed of your servers.

How to Disable WAF Firewall in Cloudflare


 Cloudflare provides a comprehensive suite of security services, including a Web Application Firewall (WAF), to protect your website from various online threats. However, there may be situations where you need to disable the WAF temporarily or permanently. In this article, we will guide you through the process of disabling the WAF Firewall in Cloudflare.

Step-by-Step Guide

  • Log in to Cloudflare:
  • Select the Domain:
    • Once you’re logged in, you’ll see a list of domains associated with your account.
    • Choose the domain for which you want to disable the WAF.
  • Access Firewall Settings:
    • In the left-hand sidebar, click on the “Firewall” tab.
    • This will open the Firewall settings page for your selected domain.
  • Navigate to Managed Rules:
    • Scroll down the page until you reach the “Managed Rules” section.
    • Within this section, you’ll find the “Managed Rulesets” link.
  • Disable Cloudflare Managed Ruleset:
    • Click on the “Managed Rulesets” link to access the managed rulesets for your domain.
    • Locate the “Cloudflare Managed Ruleset” from the list.
    • On the right-hand side, you’ll see a three-dot menu associated with the ruleset.
  • Disable the Ruleset:
    • Click on the three-dot menu next to the Cloudflare Managed Ruleset.
    • From the dropdown menu, select the option to “Disable.”
  • Confirm the Action:
    • A confirmation dialog box will appear, asking you to confirm the disabling of the ruleset.
    • Read the dialog carefully to ensure you understand the implications of disabling the WAF.
    • If you still wish to proceed, click on the “Disable” button.


 By following the steps outlined above, you can effectively disable the Web Application Firewall (WAF) in Cloudflare for your selected domain. However, it’s important to remember that disabling the WAF removes an essential layer of security from your website. Before proceeding, carefully consider the potential risks and make sure to have alternative security measures in place.

Please note that Cloudflare’s user interface may change over time, so the exact steps and options described in this article might differ slightly. In such cases, refer to the Cloudflare documentation or reach out to their support for the most up-to-date instructions.

Disabling security features should always be done with caution, and it’s advisable to consult with a security professional to assess the impact and ensure adequate protection for your website.

Liked!! Share the post.

Get Support right now!

Start server management with our 24x7 monitoring and active support team

Can't get what you are looking for?

Available 24x7 for emergency support.