Stratus Security Guides - External CDNs and Firewalls

Some customers may want to use CloudFlare or Sucuri because they already have various pre-configured security and DNS settings. Some of their security features can interfere with our site validation which in turn can impact billing.

Whitelisting Validation for Sucuri

When using Sucuri’s firewall that adds a JS protector in front of the site, whitelist a specific path for our validation to work properly. Whitelisting this path will not compromise the protection on the rest of your site. Our validator uses a simple curl request and cannot process Sucuri’s JS.

  1. Note the UUID of your Webscale STRATUS instance.

    • Go to Info panel in the Webscale STRATUS Admin panel.
    • Account Name is the UUID of the install.
  2. Log into the Sucuri.net account

  3. Select the one domain to adjust.

  4. Click the Firewall option from the top navigation menu.

  5. Click Access Control.

  6. Click Whitelist URL Paths from the left-hand navigation menu.

  7. Whitelist the hidden path as shown, substituting the noted UUID where shown:

     https://magemojo.com/stratus/#/stratus/[UUID]/info
    
  8. Click Whitelist to apply the change.

  9. Confirm the change with a curl command such as

     curl https://yourwebsite.com/.[UUID]
    

    The result returned should be 200 with “validated.”

Whitelisting Validation for Cloudflare

  1. Note the UUID of your Webscale STRATUS instance.

    • Go to Info panel in the Webscale STRATUS Admin panel.
    • Account Name is the UUID of the install.
  2. Log in to your Cloudflare.com account.

  3. Click the Firewall Icon in the top menu.

  4. Click the menu Firewall Rules that appears underneath.

  5. Click Create Firewall Rule.

  6. Whitelist the hidden path as shown, substituting the noted UUID where shown:

     https://magemojo.com/stratus/#/stratus/[UUID]/info
    
  7. Click Deploy to save the change.

  8. Confirm the change with a curl command such as

     curl https://yourwebsite.com/.<uuid>
    

Last modified January 1, 0001