a187b174f951c892-CMHHitting the NLB directly (bypassing Cloudflare) times out — its security group only admits Cloudflare’s published IP ranges. That is the point of this spike.
No WAF rules on this app — it is the control: trip a rule on another subdomain, then load this one and watch it stay unaffected.
| Host | globex.crushit.cafe |
|---|---|
| User-Agent | Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; [email protected]) |
| Accept | */* |
| Accept-Encoding | gzip, br |
| Cdn-Loop | cloudflare; loops=1 |
| Cf-Connecting-Ip | 216.73.217.13 |
| Cf-Ipcity | Columbus |
| Cf-Ipcontinent | NA |
| Cf-Ipcountry | US |
| Cf-Iplatitude | 39.96118 |
| Cf-Iplongitude | -82.99879 |
| Cf-Metro-Code | 535 |
| Cf-Postal-Code | 43215 |
| Cf-Ray | a187b174f951c892-CMH |
| Cf-Region | Ohio |
| Cf-Region-Code | OH |
| Cf-Timezone | America/New_York |
| Cf-Visitor | {"scheme":"https"} |
| X-Forwarded-For | 216.73.217.13, 104.23.243.183 |
| X-Forwarded-Host | globex.crushit.cafe |
| X-Forwarded-Port | 443 |
| X-Forwarded-Proto | https |
| X-Forwarded-Server | traefik-spike-7cc8b4c7fc-p6q98 |
| X-Real-Ip | 104.23.243.183 |