Assistance needed to ensure Pabbly automation works with Cloudflare security

[Jul]

Consent to Access & Modify

I authorize Pabbly Support to log in to my account and make changes to the specified workflow for troubleshooting.

Hello Pabbly Support Team,


We are currently securing our websites with Cloudflare (Free plan) and have recently added multiple security rules (Managed Challenge, Rate Limiting, etc.) to mitigate bot attacks and high request spikes.


To ensure our automations with Pabbly Connect continue working, we have already whitelisted the IP address 44.224.102.169 in Cloudflare, skipping all security features (Custom Rules, Rate Limiting, Managed Rules, and Super Bot Fight Mode).


However, after testing, automations are still failing, even outside of Under Attack Mode.


Could you please confirm:

1. Do you use additional outbound IP addresses (besides 44.224.102.169) for webhooks/API calls that we also need to whitelist in Cloudflare? If yes, could you provide the full updated list?
2. Is there a specific User-Agent header or unique request header (e.g., X-Pabbly-Signature) that your requests always send, so we can configure a Cloudflare rule to bypass security based on that, in case IPs vary?
3. Do you have any best practices or recommendations when using Pabbly with Cloudflare (e.g., required headers, IP ranges, or rules to avoid challenge blocks)?

We want to make sure everything continues to run smoothly as before while keeping the site protected.


Thank you for your support and looking forward to your guidance.

 

[ArshilAhmad]

Hi @Jul,

Please try whitelisting this IP address: 157.180.81.74 as well.

Thanks & Regards,
Arshil Ahmad
Customer Support Associate
Pabbly.com
Rate your support