Hello, the Cloudflare "Bot Fight Mode", which challenges requests from known bots, gets triggered on the webhook call to our server, from Vapi. Do you know how we can avoid this? This security feature is useful.

@radu Hello! To ensure that the webhook calls from VAPI to your server are not interrupted by Cloudflare's "Bot Fight Mode," you can consider implementing one of the following solutions: 1. **Whitelist VAPI's IP Addresses**: If VAPI has a range of known IP addresses, you can whitelist these in Cloudflare. This will allow Cloudflare to recognize incoming requests from these IPs as legitimate and bypass the Bot Fight Mode for them. 2. **Create Page Rules**: In Cloudflare, you can create specific page rules that disable security features for the path that your webhook is listening on. This way, you can disable the Bot Fight Mode for the specific URL that VAPI is calling. 3. **Adjust Security Level**: You can adjust the security level for your Cloudflare settings to a lower level for the webhook URL, which may reduce the sensitivity of the Bot Fight Mode for that path. 4. **Use Cloudflare Workers**: Implement a Cloudflare Worker that intercepts requests to your webhook URL and programmatically allows requests from VAPI while challenging others. Remember to maintain a balance between accessibility for legitimate services like VAPI and protection against malicious bots. If you need further assistance with configuring Cloudflare or if you're unsure about VAPI's IP addresses, please ask support for more info on this.

@User Do you have a recommended approach to fix this?

@radu we don't have any recommendations for this because its complete cloudflare logic whcih we don't control and have hold of it. But still share the call id let me see, if I can help.

Here's a call ID: c609dcfa-7fc8-4099-abf7-6dffb7e4ac2f

@radu can you check the call id again?