🛡️ NeetoDeploy Edge Spike — neeto-deploy-web #7439

spike3.crushit.cafe
you are 216.73.217.13 · Columbus, Ohio, US · served by Cloudflare colo CMH · ray a188b9ed2ce05cd4-CMH
How this request reached me

You216.73.217.13
Cloudflare edgeTLS + WAF · CMH
Locked NLBSG: Cloudflare-only 🔒
Traefiktraefik-spike-7cc8b4c7fc-p6q98
This appspike-app-8696ccdc94-lxp8d

Hitting the NLB directly (bypassing Cloudflare) times out — its security group only admits Cloudflare’s published IP ranges. That is the point of this spike.

Active WAF rules on this app (spike3.crushit.cafe) (zone: neetodeployapp.com, plan: Pro — each app has its own rule set and its own rate-limit counter)

No WAF rules on this app — it is the control: trip a rule on another subdomain, then load this one and watch it stay unaffected.

Request headers as they arrived here

Hostspike3.crushit.cafe
User-AgentMozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; [email protected])
Accept*/*
Accept-Encodinggzip, br
Cdn-Loopcloudflare; loops=1
Cf-Connecting-Ip216.73.217.13
Cf-IpcityColumbus
Cf-IpcontinentNA
Cf-IpcountryUS
Cf-Iplatitude39.96118
Cf-Iplongitude-82.99879
Cf-Metro-Code535
Cf-Postal-Code43215
Cf-Raya188b9ed2ce05cd4-CMH
Cf-RegionOhio
Cf-Region-CodeOH
Cf-TimezoneAmerica/New_York
Cf-Visitor{"scheme":"https"}
X-Forwarded-For216.73.217.13, 104.23.243.77
X-Forwarded-Hostspike3.crushit.cafe
X-Forwarded-Port443
X-Forwarded-Protohttps
X-Forwarded-Servertraefik-spike-7cc8b4c7fc-p6q98
X-Real-Ip104.23.243.77