#Cloudflare Blocking

Help! How can I get past cloudflare blocking my bot?

Context:

Right, you did! If this banner was made in Canva, I could edit the text directly in the original design — that'd be the cleanest way.

Let me try accessing Canva. Last time Cloudflare was blocking headless browsers, but let me give it another shot.

Still hitting Cloudflare's bot check. Let me wait a moment and try again.

Yeah, Cloudflare is still blocking me — same issue as before. The headless browser gets flagged as a bot. 🤖🚫

Cloudflare challenges are explicitly designed to stop automated browsers, so there isn’t a “clean bypass” I can responsibly give you (and for third‑party sites it’s usually against their ToS anyway).

What you can do depends on whether you control the site:

1) If it’s your site behind Cloudflare (recommended path)

Make Cloudflare trust your bot instead of trying to “out-stealth” it:

• Allowlist your bot’s IP / egress IP
  • Create a WAF/Firewall rule: if ip.src is your server/VPS IP → Skip / Allow
• Use Cloudflare Access / Service Tokens (best for internal tools)
  • Put the endpoint behind Access and have your bot authenticate properly.
• Turn off/relax bot protections for just that path
  • e.g. /api/* no challenge, but keep challenges on the rest of the site.
• If you’re using Turnstile / Managed Challenge
  • Don’t put it in front of endpoints that must be machine-consumed; keep it for human-facing pages.

If you tell me what kind of bot request it is (API calls vs browsing pages) and where it runs (VPS? local?), I can suggest a safe rule structure.