Hi,

RSS Feeds are giving me 403's today (might have been the last few days, unsure)

Browsing using my Browser is fine, but curl from Linux (which is what my RSS Reader uses to fetch) isn't:

*   Trying 104.22.46.72...
* TCP_NODELAY set
* Expire in 149997 ms for 3 (transfer 0x14bcf30478b0)
* Expire in 200 ms for 4 (transfer 0x14bcf30478b0)
* Connected to geekzone.co.nz (104.22.46.72) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: none
  CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):

* TLSv1.3 (OUT), TLS handshake, Client hello (1):                                                                                                                                       [0/1438]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: C=US; ST=CA; L=San Francisco; O=Cloudflare, Inc.; CN=sni.cloudflaressl.com
*  start date: Jul 17 00:00:00 2020 GMT
*  expire date: Jul 17 12:00:00 2021 GMT
*  subjectAltName: host "geekzone.co.nz" matched cert's "geekzone.co.nz"
*  issuer: C=US; O=Cloudflare, Inc.; CN=Cloudflare Inc ECC CA-3
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x14bcf30478b0)
> GET / HTTP/2
> Host: geekzone.co.nz
> User-Agent: curl/7.64.0
> Accept: */*
>
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* Connection state changed (MAX_CONCURRENT_STREAMS == 256)!
< HTTP/2 403
< date: Mon, 29 Mar 2021 19:33:11 GMT
< content-type: text/plain; charset=UTF-8
< content-length: 16
< x-frame-options: SAMEORIGIN
< cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
< expires: Thu, 01 Jan 1970 00:00:01 GMT
< set-cookie: __cfduid=d098692db7257caa90db689aea7ce306f1617046391; expires=Wed, 28-Apr-21 19:33:11 GMT; path=/; domain=.geekzone.co.nz; HttpOnly; SameSite=Lax; Secure
< cf-request-id: 092112e2020000eeaa7b3a2000000001
< expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
< strict-transport-security: max-age=31536000; includeSubDomains; preload
< x-content-type-options: nosniff
< server: cloudflare
< cf-ray: 637b87499f03eeaa-AKL
< alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
<
* Connection #0 to host geekzone.co.nz left intact
error code: 1020%

I thought it was because I recently turned on IPv6 (via HE.net Tunnel) and it was using IPv6 and that was blocked, but that doesn't seem to be the case because a) I can still browse the Geekzone Site via Firefox using IPv6 and b) I've disabled IPv6 and still the same (you can see that's a IPv4 attempt above)

Is it Geekzone that hates me, or Cloudflare, or am I being more of a muppet than usual?

Thanks,

Tim