As well as many other site owners who use Cloudflare as their CDN and DDoS protection provider, we always suffered from the famous annoying issue which we could never resolve – the fact that our visitors who use Tor were sometimes being forced to solve annoying captchas to access our site (or just use our onion address to avoid them), even when the Cloudflare protection was set to the lowest level, which isn’t always the case, due to many attacks we have to deal with.
But now, we were happy to find out that Since late February 2016, Cloudflare started treating Tor exit nodes as a “country” of its own. There’s no geography associated with exit node IPs, but this approach lets CloudFlare customers override the default CloudFlare threat score to define the experience for their Tor visitors – and by doing this, disabling the captchas for all visitors who use Tor.
If you run a web site on CloudFlare, and you don’t want Tor users to see captchas, then the only thing you need to do is whitelist the “T1” country code in the Access Rules of the CloudFlare Firewall app.
Here’s an example where a CloudFlare customer chooses in their dashboard to Whitelist Tor exit nodes. CloudFlare updates its list of Tor exit node IP addresses every 15 minutes:
As soon as we found out about this new option, here on DeepDotWeb made sure to whitelist all Tor’s exit nodes and decided to publish this PSA to let everyone else know its now possible, so if you come across a website who still blocks you when you try to access it using Tor, share this info with them.
- Tor Wiki on – How to unblock Tor users
- Cloudfalre support on how to whitelist Tor exit nodes
- Use DeepDotWeb onion address with your JS disabled to maximize your privacy: deepdot35wvmeyd5.onion