[KomoD]

> and can be safely blocked.

Well no, not if you yourself are also using Cloudflare

[Manouchehri]

You can block third party Workers with a CF WAF rule. Here's an example:

cf.worker.upstream_zone ne "" and not cf.worker.upstream_zone in {"aimoda.workers.dev" "ai.moda"}

[capableweb]

You mean like server<>server communication? Hopefully that communication stays within the network rather than going from server<>internet<>server

[KomoD]

I mean if you are using Cloudflare with their proxy, so origin<>cloudflare<>client

[capableweb]

Yeah, then you'd just block based on the client IP which is in a header, rather than the IP on the connection.