diff --git a/app/Exceptions/Handler.php b/app/Exceptions/Handler.php
index 177edd378..247b7509f 100644
--- a/app/Exceptions/Handler.php
+++ b/app/Exceptions/Handler.php
@@ -46,11 +46,13 @@ class Handler extends ExceptionHandler
      */
     public function report(Throwable $e): void
     {
-        $handlerLogging = app()->make(HandlerLoggingInterface::class);
+        if (app()->has(HandlerLoggingInterface::class)) {
+            $handlerLogging = app()->make(HandlerLoggingInterface::class);
 
-        if ($e instanceof TooManyRequestsHttpException) {
-            $user = Auth::user();
-            $handlerLogging->tooManyRequests(request()?->ip() ?? 'unknown IP', $user?->id, $user?->name, $e);
+            if ($e instanceof TooManyRequestsHttpException) {
+                $user = Auth::user();
+                $handlerLogging->tooManyRequests(request()?->ip() ?? 'unknown IP', request()?->path(), $user?->id, $user?->name, $e);
+            }
         }
 
         parent::report($e);
diff --git a/app/Exceptions/Logging/HandlerLogging.php b/app/Exceptions/Logging/HandlerLogging.php
index b8026eb6a..3649a9384 100644
--- a/app/Exceptions/Logging/HandlerLogging.php
+++ b/app/Exceptions/Logging/HandlerLogging.php
@@ -7,7 +7,7 @@
 
 class HandlerLogging extends RollbarStructuredLogging implements HandlerLoggingInterface
 {
-    public function tooManyRequests(string $ip, ?int $userId, ?string $username, Throwable $throwable): void
+    public function tooManyRequests(string $ip, string $uri, ?int $userId, ?string $username, Throwable $throwable): void
     {
         $this->error(__METHOD__, get_defined_vars());
     }
diff --git a/app/Exceptions/Logging/HandlerLoggingInterface.php b/app/Exceptions/Logging/HandlerLoggingInterface.php
index 2b9a1fb73..4d1579137 100644
--- a/app/Exceptions/Logging/HandlerLoggingInterface.php
+++ b/app/Exceptions/Logging/HandlerLoggingInterface.php
@@ -4,5 +4,5 @@
 
 interface HandlerLoggingInterface
 {
-    public function tooManyRequests(string $ip, ?int $userId, ?string $username, \Throwable $throwable): void;
+    public function tooManyRequests(string $ip, string $uri, ?int $userId, ?string $username, \Throwable $throwable): void;
 }
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index 55a0a546d..fa9715fc0 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -10,7 +10,9 @@
 use App\Http\Middleware\OnlyAjax;
 use App\Http\Middleware\ReadOnlyMode;
 use App\Http\Middleware\RedirectIfAuthenticated;
+use App\Http\Middleware\TracksUserIpAddress;
 use App\Http\Middleware\TrimStrings;
+use App\Http\Middleware\TrustProxies;
 use App\Http\Middleware\VerifyCsrfToken;
 use App\Http\Middleware\ViewCacheBuster;
 use BeyondCode\ServerTiming\Middleware\ServerTimingMiddleware;
@@ -58,6 +60,7 @@ class Kernel extends HttpKernel
             ShareErrorsFromSession::class,
             VerifyCsrfToken::class,
             SubstituteBindings::class,
+            TrustProxies::class,
         ],
 
         'api' => [
@@ -66,6 +69,7 @@ class Kernel extends HttpKernel
             'debug_info_context_logger' => DebugInfoContextLogger::class,
             'read_only_mode'            => ReadOnlyMode::class,
             'authentication'            => ApiAuthentication::class,
+            TrustProxies::class,
         ],
     ];
 
@@ -89,5 +93,6 @@ class Kernel extends HttpKernel
         'debugbarmessagelogger'     => DebugBarMessageLogger::class,
         'debug_info_context_logger' => DebugInfoContextLogger::class,
         'read_only_mode'            => ReadOnlyMode::class,
+        'track_ip'                  => TracksUserIpAddress::class,
     ];
 }
diff --git a/app/Http/Middleware/TracksUserIpAddress.php b/app/Http/Middleware/TracksUserIpAddress.php
new file mode 100644
index 000000000..e5284ecd2
--- /dev/null
+++ b/app/Http/Middleware/TracksUserIpAddress.php
@@ -0,0 +1,38 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use App\Models\User;
+use App\Models\UserIpAddress;
+use Auth;
+use Closure;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\DB;
+use Symfony\Component\HttpFoundation\Response;
+
+class TracksUserIpAddress
+{
+    /**
+     * Handle an incoming request.
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        // Maybe this should be handled differently? Idk how heavy these queries will be
+        if (!$request->ajax() && Auth::check()) {
+            /** @var User $user */
+            $user = Auth::user();
+            UserIpAddress::upsert(
+                [
+                    'user_id'    => $user->id,
+                    'ip_address' => $request->ip(),
+                    'count'      => 1, // Default value for new rows
+                    'updated_at' => now(), // Example of tracking when a row is updated
+                ],
+                ['user_id', 'ip_address'],
+                ['count' => DB::raw('count + 1'), 'updated_at'] // Update these columns if a conflict occurs
+            );
+        }
+
+        return $next($request);
+    }
+}
diff --git a/app/Http/Middleware/TrustProxies.php b/app/Http/Middleware/TrustProxies.php
index 3391630ec..ba73b97df 100644
--- a/app/Http/Middleware/TrustProxies.php
+++ b/app/Http/Middleware/TrustProxies.php
@@ -2,6 +2,8 @@
 
 namespace App\Http\Middleware;
 
+use App\Service\Cloudflare\CloudflareServiceInterface;
+use Closure;
 use Illuminate\Http\Middleware\TrustProxies as Middleware;
 use Illuminate\Http\Request;
 
@@ -25,4 +27,24 @@ class TrustProxies extends Middleware
         Request::HEADER_X_FORWARDED_PORT |
         Request::HEADER_X_FORWARDED_PROTO |
         Request::HEADER_X_FORWARDED_AWS_ELB;
+
+    public function __construct(
+        private readonly CloudflareServiceInterface $cloudflareService
+    ) {
+    }
+
+    public function handle(Request $request, Closure $next)
+    {
+        // https://developers.cloudflare.com/fundamentals/reference/http-request-headers/
+        if (app()->isProduction()) {
+            // Ensure that we know the original IP address that made the request
+            // https://khalilst.medium.com/get-real-client-ip-behind-cloudflare-in-laravel-189cb89059ff
+            Request::setTrustedProxies(
+                $this->cloudflareService->getIpRanges(),
+                $this->headers
+            );
+        }
+
+        return parent::handle($request, $next);
+    }
 }
diff --git a/app/Models/Team.php b/app/Models/Team.php
index d456cbacd..6d2a06b7b 100644
--- a/app/Models/Team.php
+++ b/app/Models/Team.php
@@ -12,6 +12,7 @@
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Database\Eloquent\Relations\BelongsToMany;
 use Illuminate\Database\Eloquent\Relations\HasMany;
+use Illuminate\Support\Carbon;
 use Illuminate\Support\Collection;
 use Illuminate\Support\Facades\Auth;
 
@@ -23,6 +24,9 @@
  * @property string                   $invite_code
  * @property string                   $default_role
  *
+ * @property Carbon $updated_at
+ * @property Carbon $created_at
+ *
  * @property Collection<TeamUser>     $teamUsers
  * @property Collection<User>         $members
  * @property Collection<DungeonRoute> $dungeonroutes
@@ -32,13 +36,12 @@
 class Team extends Model
 {
     use HasIconFile;
+    use GeneratesPublicKey;
 
     protected $visible = ['name', 'description', 'public_key'];
 
     protected $fillable = ['default_role'];
 
-    use GeneratesPublicKey;
-
     /**
      * https://stackoverflow.com/a/34485411/771270
      */
diff --git a/app/Models/UserIpAddress.php b/app/Models/UserIpAddress.php
new file mode 100644
index 000000000..ef0768ac4
--- /dev/null
+++ b/app/Models/UserIpAddress.php
@@ -0,0 +1,37 @@
+<?php
+
+namespace App\Models;
+
+use Eloquent;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Database\Eloquent\Relations\BelongsTo;
+use Illuminate\Support\Carbon;
+
+/**
+ * @property int    $id
+ * @property int    $user_id
+ * @property string $ip_address
+ * @property int    $count
+ *
+ * @property Carbon $updated_at
+ * @property Carbon $created_at
+ *
+ * @property User   $user
+ *
+ * @mixin Eloquent
+ */
+class UserIpAddress extends Model
+{
+    protected $fillable = [
+        'user_id',
+        'ip_address',
+        'count',
+        'updated_at',
+        'created_at',
+    ];
+
+    public function user(): BelongsTo
+    {
+        return $this->belongsTo(User::class, 'user_id');
+    }
+}
diff --git a/app/Models/UserReport.php b/app/Models/UserReport.php
index 48069f577..24ded56e3 100644
--- a/app/Models/UserReport.php
+++ b/app/Models/UserReport.php
@@ -17,7 +17,8 @@
  * @property string $message
  * @property bool   $contact_ok
  * @property string $status
- * @property User   $author
+ *
+ * @property User   $user
  *
  * @mixin Eloquent
  */
@@ -27,6 +28,6 @@ class UserReport extends Model
 
     public function user(): BelongsTo
     {
-        return $this->belongsTo(User::class, 'user_id');
+        return $this->belongsTo(User::class);
     }
 }
diff --git a/app/Overrides/CustomRateLimiter.php b/app/Overrides/CustomRateLimiter.php
new file mode 100644
index 000000000..12f4e39aa
--- /dev/null
+++ b/app/Overrides/CustomRateLimiter.php
@@ -0,0 +1,21 @@
+<?php
+
+namespace App\Overrides;
+
+use Illuminate\Cache\RateLimiter as BaseRateLimiter;
+
+class CustomRateLimiter extends BaseRateLimiter
+{
+    public function __construct($cache)
+    {
+        parent::__construct($cache);
+    }
+
+    public function cleanRateLimiterKey($key): string
+    {
+        // Add a custom prefix specifically for rate limiter keys
+        $prefix = 'rate-limiter:';
+
+        return $prefix . parent::cleanRateLimiterKey($key);
+    }
+}
diff --git a/app/Providers/AppServiceProvider.php b/app/Providers/AppServiceProvider.php
index 0c8626d6a..104599b7c 100644
--- a/app/Providers/AppServiceProvider.php
+++ b/app/Providers/AppServiceProvider.php
@@ -4,9 +4,11 @@
 
 use App\Models\Release;
 use App\Models\User;
+use App\Overrides\CustomRateLimiter;
+use App\Service\Cloudflare\CloudflareServiceInterface;
 use Auth;
+use Illuminate\Cache\RateLimiter;
 use Illuminate\Database\Eloquent\Model;
-use Illuminate\Http\Request;
 use Illuminate\Support\ServiceProvider;
 use Rollbar\Payload\Level;
 use Rollbar\Rollbar;
@@ -16,8 +18,10 @@ class AppServiceProvider extends ServiceProvider
     /**
      * Bootstrap any application services.
      */
-    public function boot(): void
-    {
+    public function boot(
+        CloudflareServiceInterface $cloudflareService
+    ): void {
+
         Model::preventLazyLoading(!app()->isProduction());
 
         /** @var User|null $user */
@@ -41,13 +45,6 @@ public function boot(): void
                 'correlationId' => correlationId(),
             ],
         ]);
-
-        // Ensure that we know the original IP address that made the request
-        // https://khalilst.medium.com/get-real-client-ip-behind-cloudflare-in-laravel-189cb89059ff
-        Request::setTrustedProxies(
-            ['REMOTE_ADDR'],
-            Request::HEADER_X_FORWARDED_FOR
-        );
     }
 
     /**
@@ -55,6 +52,11 @@ public function boot(): void
      */
     public function register(): void
     {
-        //
+        // Bind our custom rate limiter
+        $this->app->extend(RateLimiter::class, function ($command, $app) {
+            return new CustomRateLimiter($app->make('cache')->driver(
+                $app['config']->get('cache.limiter')
+            ));
+        });
     }
 }
diff --git a/app/Providers/KeystoneGuruServiceProvider.php b/app/Providers/KeystoneGuruServiceProvider.php
index 49ca98554..cd6b3f0bd 100644
--- a/app/Providers/KeystoneGuruServiceProvider.php
+++ b/app/Providers/KeystoneGuruServiceProvider.php
@@ -28,6 +28,8 @@
 use App\Service\Cache\DevCacheService;
 use App\Service\ChallengeModeRunData\ChallengeModeRunDataService;
 use App\Service\ChallengeModeRunData\ChallengeModeRunDataServiceInterface;
+use App\Service\Cloudflare\CloudflareService;
+use App\Service\Cloudflare\CloudflareServiceInterface;
 use App\Service\CombatLog\CombatLogDataExtractionService;
 use App\Service\CombatLog\CombatLogDataExtractionServiceInterface;
 use App\Service\CombatLog\CombatLogMappingVersionService;
@@ -207,6 +209,7 @@ public function register(): void
         $this->app->bind(WowheadServiceInterface::class, WowheadService::class);
 //        $this->app->bind(RaiderIOApiServiceInterface::class, RaiderIOApiService::class);
         $this->app->bind(RaiderIOApiServiceInterface::class, RaiderIOKeystoneGuruApiService::class);
+        $this->app->bind(CloudflareServiceInterface::class, CloudflareService::class);
 
         // Depends on CombatLogService, SeasonService, WowheadService
         $this->app->bind(CombatLogDataExtractionServiceInterface::class, CombatLogDataExtractionService::class);
diff --git a/app/Providers/LoggingServiceProvider.php b/app/Providers/LoggingServiceProvider.php
index ebf5435b1..67f9238bf 100644
--- a/app/Providers/LoggingServiceProvider.php
+++ b/app/Providers/LoggingServiceProvider.php
@@ -12,6 +12,8 @@
 use App\Service\Cache\Logging\CacheServiceLoggingInterface;
 use App\Service\ChallengeModeRunData\Logging\ChallengeModeRunDataServiceLogging;
 use App\Service\ChallengeModeRunData\Logging\ChallengeModeRunDataServiceLoggingInterface;
+use App\Service\Cloudflare\Logging\CloudflareServiceLogging;
+use App\Service\Cloudflare\Logging\CloudflareServiceLoggingInterface;
 use App\Service\CombatLog\Builders\Logging\CreateRouteBodyCombatLogEventsBuilderLogging;
 use App\Service\CombatLog\Builders\Logging\CreateRouteBodyCombatLogEventsBuilderLoggingInterface;
 use App\Service\CombatLog\Builders\Logging\CreateRouteBodyCorrectionBuilderLogging;
@@ -99,6 +101,9 @@ public function register(): void
         // Challenge Mode Run Data
         $this->app->bind(ChallengeModeRunDataServiceLoggingInterface::class, ChallengeModeRunDataServiceLogging::class);
 
+        // Cloudflare
+        $this->app->bind(CloudflareServiceLoggingInterface::class, CloudflareServiceLogging::class);
+
         // Combat log
         /// Builders
         $this->app->bind(DungeonRouteBuilderLoggingInterface::class, DungeonRouteBuilderLogging::class);
diff --git a/app/Providers/RouteServiceProvider.php b/app/Providers/RouteServiceProvider.php
index 62f1c414d..eda6ea392 100644
--- a/app/Providers/RouteServiceProvider.php
+++ b/app/Providers/RouteServiceProvider.php
@@ -19,7 +19,7 @@ class RouteServiceProvider extends ServiceProvider
      */
     public function boot(): void
     {
-        //
+        $this->configureRateLimiting();
 
         parent::boot();
     }
@@ -32,9 +32,6 @@ public function map(): void
         $this->mapApiRoutes();
 
         $this->mapWebRoutes();
-
-        //
-        $this->configureRateLimiting();
     }
 
 
@@ -101,6 +98,9 @@ protected function configureRateLimiting(): void
 
     private function noLimitForExemptions(Request $request): ?Limit
     {
+        // Temporarily disable this!
+        return Limit::none();
+
         /** @var User|null $user */
         $user = $request->user();
 
@@ -115,6 +115,7 @@ private function userKey(Request $request): string
     {
         /** @var User|null $user */
         $user = $request->user();
+
         return $user?->id ?: $request->ip();
     }
 }
diff --git a/app/Service/Cloudflare/CloudflareService.php b/app/Service/Cloudflare/CloudflareService.php
new file mode 100644
index 000000000..9a8164425
--- /dev/null
+++ b/app/Service/Cloudflare/CloudflareService.php
@@ -0,0 +1,101 @@
+<?php
+
+namespace App\Service\Cloudflare;
+
+use App\Service\Cache\CacheServiceInterface;
+use App\Service\Cloudflare\Logging\CloudflareServiceLoggingInterface;
+use App\Service\Traits\Curl;
+
+/**
+ * https://www.cloudflare.com/ips/
+ */
+class CloudflareService implements CloudflareServiceInterface
+{
+    use Curl;
+
+    private const CLOUDFLARE_BASE_URL = 'https://cloudflare.com/';
+
+    public function __construct(
+        private readonly CacheServiceInterface             $cacheService,
+        private readonly CloudflareServiceLoggingInterface $log
+    ) {
+    }
+
+    public function getIpRanges(bool $useCache = true): array
+    {
+        return array_merge($this->getIpRangesV4($useCache), $this->getIpRangesV6($useCache));
+    }
+
+    public function getIpRangesV4(bool $useCache = true): array
+    {
+        return $this->cacheService->rememberWhen($useCache, 'cloudflare:ip-ranges-v4', function () {
+            $response = $this->curlGet(sprintf('%s/ips-v4', self::CLOUDFLARE_BASE_URL));
+
+            return $this->validateIpAddressRanges($response, FILTER_FLAG_IPV4);
+        });
+    }
+
+    public function getIpRangesV6(bool $useCache = true): array
+    {
+        return $this->cacheService->rememberWhen($useCache, 'cloudflare:ip-ranges-v6', function () {
+            $response = $this->curlGet(sprintf('%s/ips-v6', self::CLOUDFLARE_BASE_URL));
+
+            return $this->validateIpAddressRanges($response, FILTER_FLAG_IPV6);
+        });
+    }
+
+    private function validateIpAddressRanges(string $ipAddresses, int $options): array
+    {
+        $result = [];
+
+        // Comes from the internet - so don't use PHP_EOL, filter to remove empty lines
+        $ipRanges = array_filter(explode("\n", $ipAddresses));
+
+        foreach ($ipRanges as $ipRange) {
+            if ($this->validateCidr($ipRange)) {
+                $result[] = $ipRange;
+            } else {
+                $this->log->getIpRangesInvalidIpAddress($ipRange);
+            }
+        }
+
+        return $result;
+    }
+
+    /**
+     * @param string $cidr
+     * @return bool
+     * https://gist.github.com/pavinjosdev/cb1d636ea9dc2bd201d54107d10650c5
+     */
+    private function validateCidr(string $cidr): bool
+    {
+
+        $parts = explode('/', $cidr);
+        if (count($parts) != 2) {
+            return false;
+        }
+
+        $ip      = $parts[0];
+        $netmask = $parts[1];
+
+        if (!preg_match("/^\d+$/", $netmask)) {
+            return false;
+        }
+
+        $netmask = intval($parts[1]);
+
+        if ($netmask < 0) {
+            return false;
+        }
+
+        if (filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4)) {
+            return $netmask <= 32;
+        }
+
+        if (filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV6)) {
+            return $netmask <= 128;
+        }
+
+        return false;
+    }
+}
diff --git a/app/Service/Cloudflare/CloudflareServiceInterface.php b/app/Service/Cloudflare/CloudflareServiceInterface.php
new file mode 100644
index 000000000..7e82fe6a6
--- /dev/null
+++ b/app/Service/Cloudflare/CloudflareServiceInterface.php
@@ -0,0 +1,12 @@
+<?php
+
+namespace App\Service\Cloudflare;
+
+interface CloudflareServiceInterface
+{
+    public function getIpRanges(bool $useCache = true): array;
+
+    public function getIpRangesV4(bool $useCache = true): array;
+
+    public function getIpRangesV6(bool $useCache = true): array;
+}
diff --git a/app/Service/Cloudflare/Logging/CloudflareServiceLogging.php b/app/Service/Cloudflare/Logging/CloudflareServiceLogging.php
new file mode 100644
index 000000000..a5427fb35
--- /dev/null
+++ b/app/Service/Cloudflare/Logging/CloudflareServiceLogging.php
@@ -0,0 +1,14 @@
+<?php
+
+namespace App\Service\Cloudflare\Logging;
+
+use App\Logging\RollbarStructuredLogging;
+
+class CloudflareServiceLogging extends RollbarStructuredLogging implements CloudflareServiceLoggingInterface
+{
+
+    public function getIpRangesInvalidIpAddress(string $ipAddress): void
+    {
+        $this->warning(__METHOD__, get_defined_vars());
+    }
+}
diff --git a/app/Service/Cloudflare/Logging/CloudflareServiceLoggingInterface.php b/app/Service/Cloudflare/Logging/CloudflareServiceLoggingInterface.php
new file mode 100644
index 000000000..9751e8201
--- /dev/null
+++ b/app/Service/Cloudflare/Logging/CloudflareServiceLoggingInterface.php
@@ -0,0 +1,8 @@
+<?php
+
+namespace App\Service\Cloudflare\Logging;
+
+interface CloudflareServiceLoggingInterface
+{
+    public function getIpRangesInvalidIpAddress(string $ipAddress): void;
+}
diff --git a/app/Service/CombatLog/CreateRouteDungeonRouteService.php b/app/Service/CombatLog/CreateRouteDungeonRouteService.php
index 65e19104d..c7fee2942 100644
--- a/app/Service/CombatLog/CreateRouteDungeonRouteService.php
+++ b/app/Service/CombatLog/CreateRouteDungeonRouteService.php
@@ -354,7 +354,7 @@ private function generateMapIcons(
             $hasResolvedEnemy = $createRouteBodyNpc->getResolvedEnemy() !== null;
 
             $mapIconAttributes[] = array_merge([
-                'mapping_version_id' => $mappingVersion->id,
+                'mapping_version_id' => null,
                 'floor_id'           => $currentFloor->id,
                 'dungeon_route_id'   => $dungeonRoute?->id ?? null,
                 'team_id'            => null,
diff --git a/config/database.php b/config/database.php
index fca14cf35..ec4469418 100644
--- a/config/database.php
+++ b/config/database.php
@@ -204,7 +204,7 @@
             'prefix'  => env('REDIS_PREFIX',
                 sprintf('%s-%s-cache:',
                     Str::slug(env('APP_NAME', 'laravel')),
-                    Str::slug(config('app.type'))
+                    Str::slug(env('APP_TYPE', 'local'))
                 )
             ),
         ],
diff --git a/database/migrations/2024_11_20_151928_create_user_ip_addresses_table.php b/database/migrations/2024_11_20_151928_create_user_ip_addresses_table.php
new file mode 100644
index 000000000..1a58b07af
--- /dev/null
+++ b/database/migrations/2024_11_20_151928_create_user_ip_addresses_table.php
@@ -0,0 +1,34 @@
+<?php
+
+use Illuminate\Database\Migrations\Migration;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\Schema;
+
+return new class extends Migration
+{
+    /**
+     * Run the migrations.
+     */
+    public function up(): void
+    {
+        Schema::create('user_ip_addresses', function (Blueprint $table) {
+            $table->id();
+            $table->integer('user_id');
+            $table->integer('count');
+            $table->string('ip_address');
+            $table->timestamps();
+
+            $table->index(['user_id', 'ip_address']);
+            $table->index(['ip_address']);
+            $table->unique(['user_id', 'ip_address']);
+        });
+    }
+
+    /**
+     * Reverse the migrations.
+     */
+    public function down(): void
+    {
+        Schema::dropIfExists('user_ip_addresses');
+    }
+};
diff --git a/database/seeders/releases/v11.7.2.json b/database/seeders/releases/v11.7.2.json
new file mode 100644
index 000000000..7b3d3205d
--- /dev/null
+++ b/database/seeders/releases/v11.7.2.json
@@ -0,0 +1,31 @@
+{
+    "id": 262,
+    "release_changelog_id": 269,
+    "version": "v11.7.2",
+    "title": "Map menu layout improvements on mobile",
+    "backup_db": 1,
+    "silent": 0,
+    "spotlight": 0,
+    "released": 0,
+    "created_at": "2024-11-22T11:08:53+00:00",
+    "updated_at": "2024-11-22T11:08:53+00:00",
+    "changelog": {
+        "id": 269,
+        "release_id": 262,
+        "description": null,
+        "changes": [
+            {
+                "release_changelog_id": 269,
+                "release_changelog_category_id": 1,
+                "ticket_id": 2620,
+                "change": "Added support for Cloudflare proxy IPs."
+            },
+            {
+                "release_changelog_id": 269,
+                "release_changelog_category_id": 5,
+                "ticket_id": 2624,
+                "change": "Map menu on mobile looks a lot better now."
+            }
+        ]
+    }
+}
diff --git a/resources/assets/js/custom/admin/adminpanelcontrols.js b/resources/assets/js/custom/admin/adminpanelcontrols.js
index 81eea03f7..beaa2193d 100644
--- a/resources/assets/js/custom/admin/adminpanelcontrols.js
+++ b/resources/assets/js/custom/admin/adminpanelcontrols.js
@@ -31,6 +31,11 @@ class AdminPanelControls extends MapControl {
         this.moveStep = 2;
 
         this.map.leafletMap.on('mousemove', function (mouseMoveEvent) {
+            // When switching between normal mode and mobile mode, the latlng may be undefined
+            // probably because mobile does not have a mouse
+            if (mouseMoveEvent.latlng === undefined) {
+                return;
+            }
             let lat = _.round(mouseMoveEvent.latlng.lat, 3);
             let lng = _.round(mouseMoveEvent.latlng.lng, 3);
 
diff --git a/resources/views/common/layout/header.blade.php b/resources/views/common/layout/header.blade.php
index 8a9c63f81..1f4a22093 100644
--- a/resources/views/common/layout/header.blade.php
+++ b/resources/views/common/layout/header.blade.php
@@ -130,7 +130,7 @@ class="navbar navbar-second fixed-top navbar-expand-lg {{ $theme === 'lux' ? 'na
                                data-toggle="dropdown" aria-haspopup="true" aria-expanded="false">
                                 {{ $headerText }}
                             </a>
-                            <div class="dropdown-menu text-center text-lg-left" aria-labelledby="{{ $dropdownId }}">
+                            <div class="dropdown-menu text-center text-xl-left" aria-labelledby="{{ $dropdownId }}">
                                 @foreach($opts as $optsKey => $text)
                                     <a class="dropdown-item" href="{{ $optsKey }}">{!! $text !!}</a>
                                 @endforeach
diff --git a/resources/views/common/layout/nav/gameversions.blade.php b/resources/views/common/layout/nav/gameversions.blade.php
index f6dd3a0b6..e9ca5342e 100644
--- a/resources/views/common/layout/nav/gameversions.blade.php
+++ b/resources/views/common/layout/nav/gameversions.blade.php
@@ -14,7 +14,7 @@
        data-toggle="dropdown" aria-haspopup="true" aria-expanded="false">
         @include('common.gameversion.gameversionnav', ['gameVersion' => $currentUserGameVersion])
     </a>
-    <div class="dropdown-menu text-center text-lg-left" aria-labelledby="languageDropdown">
+    <div class="dropdown-menu text-center text-xl-left" aria-labelledby="languageDropdown">
         @foreach ($allGameVersions as $gameVersion)
             <a class="dropdown-item {{ $currentUserGameVersion->id === $gameVersion->id ? 'active' : '' }}"
                href="{{ route('gameversion.update', ['gameVersion' => $gameVersion]) }}">
diff --git a/resources/views/common/layout/nav/user.blade.php b/resources/views/common/layout/nav/user.blade.php
index 2f351b5b3..0cff9ebcb 100644
--- a/resources/views/common/layout/nav/user.blade.php
+++ b/resources/views/common/layout/nav/user.blade.php
@@ -21,7 +21,7 @@
            data-toggle="dropdown" aria-haspopup="true" aria-expanded="false">
             @include('common.user.name', ['user' => $user])
         </a>
-        <div class="dropdown-menu text-center text-lg-left" aria-labelledby="navbarDropdown">
+        <div class="dropdown-menu text-center text-xl-left" aria-labelledby="navbarDropdown">
             @if( $user->hasRole(Role::ROLE_ADMIN))
                 @if( config('telescope.enabled') )
                     <a class="dropdown-item"
diff --git a/resources/views/common/maps/controls/buttons/headerbutton.blade.php b/resources/views/common/maps/controls/buttons/headerbutton.blade.php
new file mode 100644
index 000000000..9f421ef3f
--- /dev/null
+++ b/resources/views/common/maps/controls/buttons/headerbutton.blade.php
@@ -0,0 +1,13 @@
+<li class="nav-item mr-2">
+    <div class="d-block d-xl-flex h-100 pb-1 pb-xl-0">
+        <div class="row justify-content-center align-self-center">
+            <div class="d-none col-md-4">
+            </div>
+            <div class="col-xl col-md-4">
+                {{ $slot }}
+            </div>
+            <div class="d-none col-md-4">
+            </div>
+        </div>
+    </div>
+</li>
diff --git a/resources/views/common/maps/controls/header.blade.php b/resources/views/common/maps/controls/header.blade.php
index 19699f2e2..d7411aade 100644
--- a/resources/views/common/maps/controls/header.blade.php
+++ b/resources/views/common/maps/controls/header.blade.php
@@ -48,58 +48,52 @@ class="map_fade_out navbar navbar-expand-xl {{ $theme === 'lux' ? 'navbar-light'
         <div class="collapse navbar-collapse text-center text-xl-left" id="mainNavbar">
             <ul class="navbar-nav mr-auto">
                 @isset($dungeonroute)
-                    <li class="nav-item">
-                        <div class="d-flex h-100">
-                            <div class="row justify-content-center align-self-center">
-                                <div class="col">
-                                    @if( $mapContext instanceof MapContextLiveSession )
-                                            <?php $stopped = $livesession->expires_at !== null; ?>
-                                        @if(!$stopped)
-                                            <button id="stop_live_session" class="btn btn-danger btn-sm"
-                                                    data-toggle="modal" data-target="#stop_live_session_modal">
-                                                <i class="fas fa-stop"></i> {{ __('view_common.maps.controls.header.stop') }}
-                                            </button>
+                    @component('common.maps.controls.buttons.headerbutton')
+                        @if( $mapContext instanceof MapContextLiveSession )
+                                <?php $stopped = $livesession->expires_at !== null; ?>
+                            @if(!$stopped)
+                                <button id="stop_live_session" class="btn btn-danger btn-sm"
+                                        data-toggle="modal" data-target="#stop_live_session_modal">
+                                    <i class="fas fa-stop"></i> {{ __('view_common.maps.controls.header.stop') }}
+                                </button>
+                            @endif
+                            <div id="stopped_live_session_container" class="row no-gutters"
+                                 style="display: {{ $stopped ? 'inherit' : 'none' }}">
+                                <div class="row">
+                                    <div class="col">
+                                    <span id="stopped_live_session_countdown">
+                                        {{ $stopped ? sprintf(__('view_common.maps.controls.header.live_session_expires_in'), $livesession->getExpiresInHoursSeconds()) : '' }}
+                                    </span>
+                                    </div>
+                                </div>
+                                <div class="row">
+                                    <div class="col">
+                                        @if($mayUserEdit)
+                                            <a href="{{ route('dungeonroute.edit', ['dungeon' => $dungeonroute->dungeon, 'dungeonroute' => $dungeonroute, 'title' => $dungeonroute->getTitleSlug()]) }}"
+                                               class="btn-sm btn-success w-100">
+                                                <i class="fas fa-edit"></i> {{ __('view_common.maps.controls.header.edit_route') }}
+                                            </a>
+                                        @else
+                                            <a href="{{ route('dungeonroute.view', ['dungeon' => $dungeonroute->dungeon, 'dungeonroute' => $dungeonroute, 'title' => $dungeonroute->getTitleSlug()]) }}"
+                                               class="btn-sm btn-success w-100">
+                                                <i class="fas fa-eye"></i> {{ __('view_common.maps.controls.header.view_route') }}
+                                            </a>
                                         @endif
-                                        <div id="stopped_live_session_container" class="row no-gutters"
-                                             style="display: {{ $stopped ? 'inherit' : 'none' }}">
-                                            <div class="row">
-                                                <div class="col">
-                                                <span id="stopped_live_session_countdown">
-                                                    {{ $stopped ? sprintf(__('view_common.maps.controls.header.live_session_expires_in'), $livesession->getExpiresInHoursSeconds()) : '' }}
-                                                </span>
-                                                </div>
-                                            </div>
-                                            <div class="row">
-                                                <div class="col">
-                                                    @if($mayUserEdit)
-                                                        <a href="{{ route('dungeonroute.edit', ['dungeon' => $dungeonroute->dungeon, 'dungeonroute' => $dungeonroute, 'title' => $dungeonroute->getTitleSlug()]) }}"
-                                                           class="btn-sm btn-success w-100">
-                                                            <i class="fas fa-edit"></i> {{ __('view_common.maps.controls.header.edit_route') }}
-                                                        </a>
-                                                    @else
-                                                        <a href="{{ route('dungeonroute.view', ['dungeon' => $dungeonroute->dungeon, 'dungeonroute' => $dungeonroute, 'title' => $dungeonroute->getTitleSlug()]) }}"
-                                                           class="btn-sm btn-success w-100">
-                                                            <i class="fas fa-eye"></i> {{ __('view_common.maps.controls.header.view_route') }}
-                                                        </a>
-                                                    @endif
-                                                </div>
-                                            </div>
-                                        </div>
-                                    @else
-                                        <button class="btn btn-success btn-sm" data-toggle="modal"
-                                                data-target="#start_live_session_modal">
-                                            <i class="fas fa-play"></i> {{ __('view_common.maps.controls.header.start') }}
-                                        </button>
-                                    @endif
+                                    </div>
                                 </div>
                             </div>
-                        </div>
-                    </li>
+                        @else
+                            <button class="btn btn-success btn-sm w-100"
+                                    data-toggle="modal" data-target="#start_live_session_modal">
+                                <i class="fas fa-play"></i> {{ __('view_common.maps.controls.header.start') }}
+                            </button>
+                        @endif
+                    @endcomponent
                     <li class="nav-item nav-item-divider">
 
                     </li>
                 @endisset
-                <li class="nav-item h-100">
+                @component('common.maps.controls.buttons.headerbutton')
                     <div class="row no-gutters">
                         <div class="col my-1">
                             <div class="row no-gutters">
@@ -184,10 +178,14 @@ class="btn-sm btn-success w-100">
                             </div>
                         @endif
                     @endif
-                </li>
+                @endcomponent
             </ul>
             @if($echo)
-                @include('common.layout.nav.connectedusers')
+                <ul class="navbar-nav">
+                    @component('common.maps.controls.buttons.headerbutton')
+                        @include('common.layout.nav.connectedusers')
+                    @endcomponent
+                </ul>
             @endif
             <ul class="navbar-nav">
                 <li class="nav-item nav-item-divider">
@@ -195,115 +193,76 @@ class="btn-sm btn-success w-100">
                 </li>
                 @auth
                     @if( isset($dungeonroute) && $dungeonroute->isSandbox() )
-                        <li class="nav-item mr-2">
-                            <div class="d-flex h-100">
-                                <div class="row justify-content-center align-self-center">
-                                    <a class="col" href="{{ route('dungeonroute.claim', [
-                                            'dungeon' => $dungeonroute->dungeon,
-                                            'title' => $dungeonroute->getTitleSlug(),
-                                            'dungeonroute' => $dungeonroute]
-                                        ) }}">
-                                        <button class="btn btn-success btn-sm">
-                                            <i class="fas fa-save"></i> {{ __('view_common.maps.controls.header.save_to_profile') }}
-                                        </button>
-                                    </a>
-                                </div>
-                            </div>
-                        </li>
+                        @component('common.maps.controls.buttons.headerbutton')
+                            <a href="{{ route('dungeonroute.claim', [
+                                    'dungeon' => $dungeonroute->dungeon,
+                                    'title' => $dungeonroute->getTitleSlug(),
+                                    'dungeonroute' => $dungeonroute]
+                                ) }}">
+                                <button class="btn btn-success btn-sm w-100">
+                                    <i class="fas fa-save"></i> {{ __('view_common.maps.controls.header.save_to_profile') }}
+                                </button>
+                            </a>
+                        @endcomponent
                     @endif
                 @endauth
 
                 @isset($dungeonroute)
                     @if($isUserAdmin)
-                        <li class="nav-item mr-2">
-                            <div class="d-flex h-100">
-                                <div class="row justify-content-center align-self-center">
-                                    <div class="col">
-                                        <button id="edit_route_admin_settings_button"
-                                                class="btn btn-info btn-sm" data-toggle="modal"
-                                                data-target="#edit_route_admin_settings_modal">
-                                            <i class="fas fa-toolbox"></i> {{ __('view_common.maps.controls.header.edit_route_admin_settings') }}
-                                        </button>
-                                    </div>
-                                </div>
-                            </div>
-                        </li>
+                        @component('common.maps.controls.buttons.headerbutton')
+                            <button id="edit_route_admin_settings_button" class="btn btn-info btn-sm w-100"
+                                    data-toggle="modal" data-target="#edit_route_admin_settings_modal">
+                                <i class="fas fa-toolbox"></i> {{ __('view_common.maps.controls.header.edit_route_admin_settings') }}
+                            </button>
+                        @endcomponent
                     @endif
 
-                    <li class="nav-item mr-2">
-                        <div class="d-flex h-100">
-                            <div class="row justify-content-center align-self-center">
-                                <div class="col">
-                                    <button id="simulate_route_button" class="btn btn-info btn-sm" data-toggle="modal"
-                                            data-target="#simulate_modal">
-                                        <i class="fas fa-atom"></i> {{ __('view_common.maps.controls.header.simulate_route') }}
-                                    </button>
-                                </div>
-                            </div>
-                        </div>
-                    </li>
+                    @component('common.maps.controls.buttons.headerbutton')
+                        <button id="simulate_route_button" class="btn btn-info btn-sm w-100"
+                                data-toggle="modal" data-target="#simulate_modal">
+                            <i class="fas fa-atom"></i> {{ __('view_common.maps.controls.header.simulate_route') }}
+                        </button>
+                    @endcomponent
+
                     @if(!$dungeonroute->isSandbox() && $edit)
-                        <li class="nav-item mr-2">
-                            <div class="d-flex h-100">
-                                <div class="row justify-content-center align-self-center">
-                                    <div class="col">
-                                        <button id="edit_route_settings_button" class="btn btn-info btn-sm"
-                                                data-toggle="modal"
-                                                data-target="#edit_route_settings_modal">
-                                            <i class="fas fa-cog"></i> {{ __('view_common.maps.controls.header.edit_route_settings') }}
-                                        </button>
-                                    </div>
-                                </div>
-                            </div>
-                        </li>
+                        @component('common.maps.controls.buttons.headerbutton')
+                            <button id="edit_route_settings_button" class="btn btn-info btn-sm w-100"
+                                    data-toggle="modal" data-target="#edit_route_settings_modal">
+                                <i class="fas fa-cog"></i> {{ __('view_common.maps.controls.header.edit_route_settings') }}
+                            </button>
+                        @endcomponent
                     @endif
                 @endisset
                 @if( $mapContext instanceof MapContextDungeonExplore && $isUserAdmin )
-                    <li class="nav-item mr-2">
-                        <div class="d-flex h-100">
-                            <div class="row justify-content-center align-self-center">
-                                <a class="col" href="{{ route('admin.floor.edit.mapping', [
-                                            'dungeon' => $dungeon,
-                                            'floor' => $dungeon->floors()->first(),
-                                            'mapping_version' => $dungeon->currentMappingVersion->id
-                                        ]) }}">
-                                    <button class="btn btn-success btn-sm">
-                                        <i class="fas fa-cog"></i> {{ __('view_common.maps.controls.header.edit_mapping_version') }}
-                                    </button>
-                                </a>
-                            </div>
-                        </div>
-                    </li>
+                    @component('common.maps.controls.buttons.headerbutton')
+                        <a href="{{ route('admin.floor.edit.mapping', [
+                                    'dungeon' => $dungeon,
+                                    'floor' => $dungeon->floors()->first(),
+                                    'mapping_version' => $dungeon->currentMappingVersion->id
+                                ]) }}">
+                            <button class="btn btn-success btn-sm w-100">
+                                <i class="fas fa-cog"></i> {{ __('view_common.maps.controls.header.edit_mapping_version') }}
+                            </button>
+                        </a>
+                    @endcomponent
                 @endif
                 @if( $mapContext instanceof MapContextMappingVersionEdit )
-                    <li class="nav-item mr-2">
-                        <div class="d-flex h-100">
-                            <div class="row justify-content-center align-self-center">
-                                <div class="col">
-                                    <button id="edit_mapping_version_button" class="btn btn-info btn-sm"
-                                            data-toggle="modal"
-                                            data-target="#edit_mapping_version_modal">
-                                        <i class="fas fa-cog"></i> {{ __('view_common.maps.controls.header.edit_mapping_version') }}
-                                    </button>
-                                </div>
-                            </div>
-                        </div>
-                    </li>
+                    @component('common.maps.controls.buttons.headerbutton')
+                        <button id="edit_mapping_version_button" class="btn btn-info btn-sm w-100"
+                                data-toggle="modal" data-target="#edit_mapping_version_modal">
+                            <i class="fas fa-cog"></i> {{ __('view_common.maps.controls.header.edit_mapping_version') }}
+                        </button>
+                    @endcomponent
                 @endif
 
 
                 @if($showShare)
-                    <li class="nav-item">
-                        <div class="d-flex h-100">
-                            <div class="row justify-content-center align-self-center">
-                                <div class="col">
-                                    <button class="btn btn-info btn-sm" data-toggle="modal" data-target="#share_modal">
-                                        <i class="fas fa-share"></i> {{ __('view_common.maps.controls.header.share') }}
-                                    </button>
-                                </div>
-                            </div>
-                        </div>
-                    </li>
+                    @component('common.maps.controls.buttons.headerbutton')
+                        <button class="btn btn-info btn-sm w-100"
+                                data-toggle="modal" data-target="#share_modal">
+                            <i class="fas fa-share"></i> {{ __('view_common.maps.controls.header.share') }}
+                        </button>
+                    @endcomponent
                 @endif
                 <li class="nav-item nav-item-divider">
 
diff --git a/resources/views/vendor/language/flags.blade.php b/resources/views/vendor/language/flags.blade.php
index ec81b513e..1fff8bba4 100644
--- a/resources/views/vendor/language/flags.blade.php
+++ b/resources/views/vendor/language/flags.blade.php
@@ -9,7 +9,7 @@
        data-toggle="dropdown" aria-haspopup="true" aria-expanded="false">
         @include('vendor.language.flag', ['code' => $currentUserLocale, 'name' => $currentUserLocaleName])
     </a>
-    <div class="dropdown-menu text-center text-lg-left" aria-labelledby="languageDropdown">
+    <div class="dropdown-menu text-center text-xl-left" aria-labelledby="languageDropdown">
         @foreach (language()->allowed() as $code => $name)
             <a class="dropdown-item {{ $currentUserLocale === $code ? 'active' : '' }}"
                href="{{ language()->back($code) }}">
diff --git a/routes/web.php b/routes/web.php
index 26b4c9fa6..7b3e42d9e 100644
--- a/routes/web.php
+++ b/routes/web.php
@@ -72,7 +72,7 @@
 // Webhooks
 Route::post('webhook/github', (new WebhookController())->github(...))->name('webhook.github');
 
-Route::middleware(['viewcachebuster', 'language', 'debugbarmessagelogger', 'read_only_mode', 'debug_info_context_logger'])->group(static function () {
+Route::middleware(['viewcachebuster', 'language', 'debugbarmessagelogger', 'read_only_mode', 'debug_info_context_logger', 'track_ip'])->group(static function () {
     // Catch for hard-coded /home route in RedirectsUsers.php
     Route::get('home', (new SiteController())->home(...));
     Route::get('credits', (new SiteController())->credits(...))->name('misc.credits');
diff --git a/tests/Fixtures/LoggingFixtures.php b/tests/Fixtures/LoggingFixtures.php
index 27b2d3001..d7df78801 100644
--- a/tests/Fixtures/LoggingFixtures.php
+++ b/tests/Fixtures/LoggingFixtures.php
@@ -3,6 +3,8 @@
 namespace Tests\Fixtures;
 
 use App\Service\AffixGroup\Logging\AffixGroupEaseTierServiceLoggingInterface;
+use App\Service\Cache\Logging\CacheServiceLoggingInterface;
+use App\Service\Cloudflare\Logging\CloudflareServiceLoggingInterface;
 use App\Service\CombatLog\Logging\CombatLogDungeonRouteServiceLoggingInterface;
 use App\Service\CombatLog\Logging\CombatLogServiceLoggingInterface;
 use App\Service\CombatLogEvent\Logging\CombatLogEventServiceLoggingInterface;
@@ -70,4 +72,24 @@ public static function createCombatLogEventServiceLogging(
     ): MockObject|CombatLogEventServiceLoggingInterface {
         return $testCase->createMock(CombatLogEventServiceLoggingInterface::class);
     }
+
+    /**
+     * @throws Exception
+     */
+    public static function createCloudflareServiceLogging(
+        PublicTestCase $testCase
+    ): MockObject|CloudflareServiceLoggingInterface {
+        return $testCase->createMock(CloudflareServiceLoggingInterface::class);
+    }
+
+    /**
+     * @throws Exception
+     */
+    public static function createCacheServiceLogging(
+        PublicTestCase $testCase
+    ): MockObject|CacheServiceLoggingInterface {
+        return $testCase->createMock(CacheServiceLoggingInterface::class);
+    }
+
+
 }
diff --git a/tests/Fixtures/ServiceFixtures.php b/tests/Fixtures/ServiceFixtures.php
index 28adcdf1d..9058750fc 100644
--- a/tests/Fixtures/ServiceFixtures.php
+++ b/tests/Fixtures/ServiceFixtures.php
@@ -7,6 +7,11 @@
 use App\Service\AffixGroup\AffixGroupEaseTierService;
 use App\Service\AffixGroup\AffixGroupEaseTierServiceInterface;
 use App\Service\AffixGroup\Logging\AffixGroupEaseTierServiceLoggingInterface;
+use App\Service\Cache\CacheService;
+use App\Service\Cache\CacheServiceInterface;
+use App\Service\Cache\Logging\CacheServiceLoggingInterface;
+use App\Service\Cloudflare\CloudflareService;
+use App\Service\Cloudflare\Logging\CloudflareServiceLoggingInterface;
 use App\Service\CombatLog\CombatLogService;
 use App\Service\CombatLog\CombatLogServiceInterface;
 use App\Service\CombatLog\Logging\CombatLogDungeonRouteServiceLoggingInterface;
@@ -162,4 +167,40 @@ public static function getCombatLogEventServiceMock(
             ])
             ->getMock();
     }
+
+    /**
+     * @throws Exception
+     */
+    public static function getCacheServiceMock(
+        PublicTestCase                $testCase,
+        array                         $methodsToMock = [],
+        ?CacheServiceLoggingInterface $log = null,
+    ): MockObject|CloudflareService {
+        return $testCase
+            ->getMockBuilder(CacheService::class)
+            ->onlyMethods($methodsToMock)
+            ->setConstructorArgs([
+                $log ?? LoggingFixtures::createCacheServiceLogging($testCase),
+            ])
+            ->getMock();
+    }
+
+    /**
+     * @throws Exception
+     */
+    public static function getCloudflareServiceMock(
+        PublicTestCase                        $testCase,
+        array                                 $methodsToMock = [],
+        CacheServiceInterface|MockObject|null $cacheService = null,
+        ?CloudflareServiceLoggingInterface    $log = null,
+    ): MockObject|CloudflareService {
+        return $testCase
+            ->getMockBuilder(CloudflareService::class)
+            ->onlyMethods($methodsToMock)
+            ->setConstructorArgs([
+                $cacheService ?? ServiceFixtures::getCacheServiceMock($testCase),
+                $log ?? LoggingFixtures::createCloudflareServiceLogging($testCase),
+            ])
+            ->getMock();
+    }
 }
diff --git a/tests/Unit/App/Service/Cloudflare/CloudflareServiceTest.php b/tests/Unit/App/Service/Cloudflare/CloudflareServiceTest.php
new file mode 100644
index 000000000..4cef47827
--- /dev/null
+++ b/tests/Unit/App/Service/Cloudflare/CloudflareServiceTest.php
@@ -0,0 +1,160 @@
+<?php
+
+namespace App\Service\Cloudflare;
+
+use PHPUnit\Framework\Attributes\Group;
+use PHPUnit\Framework\Attributes\Test;
+use PHPUnit\Framework\MockObject\Exception;
+use PHPUnit\Framework\MockObject\MockObject;
+use Tests\Fixtures\LoggingFixtures;
+use Tests\Fixtures\ServiceFixtures;
+use Tests\TestCases\PublicTestCase;
+
+final class CloudflareServiceTest extends PublicTestCase
+{
+    private CloudflareServiceInterface|MockObject $cacheService;
+
+    /**
+     * @throws Exception
+     */
+    protected function setUp(): void
+    {
+        parent::setUp();
+
+        // Always return the callback value - don't do anything with cache
+        $this->cacheService = ServiceFixtures::getCacheServiceMock($this, ['rememberWhen']);
+        $this->cacheService->method('rememberWhen')
+            ->willReturnCallback(fn($useCache, $key, $callback) => $callback());
+    }
+
+    /**
+     * @throws Exception
+     */
+    #[Test]
+    #[Group('CloudflareService')]
+    public function getIpRangesV4_GivenNormalResponse_ShouldReturnIpV4Addresses(): void
+    {
+        // Arrange
+        $response = $this->getResponse('ipsv4');
+
+        $log = LoggingFixtures::createCloudflareServiceLogging($this);
+        $log->expects($this->never())
+            ->method('getIpRangesInvalidIpAddress');
+
+        $cloudflareService = ServiceFixtures::getCloudflareServiceMock(
+            testCase: $this,
+            methodsToMock: ['curlGet'],
+            cacheService: $this->cacheService,
+            log: $log
+        );
+
+        $cloudflareService->method('curlGet')
+            ->willReturn($response);
+
+        // Act
+        $ipRanges = $cloudflareService->getIpRangesV4(false);
+
+        // Assert
+        $this->assertCount(15, $ipRanges);
+    }
+
+    /**
+     * @throws Exception
+     */
+    #[Test]
+    #[Group('CloudflareService')]
+    public function getIpRangesV6_GivenNormalResponse_ShouldReturnIpV4Addresses(): void
+    {
+        // Arrange
+        $response = $this->getResponse('ipsv6');
+
+        $log = LoggingFixtures::createCloudflareServiceLogging($this);
+        $log->expects($this->never())
+            ->method('getIpRangesInvalidIpAddress');
+
+        $cloudflareService = ServiceFixtures::getCloudflareServiceMock(
+            testCase: $this,
+            methodsToMock: ['curlGet'],
+            cacheService: $this->cacheService,
+            log: $log
+        );
+
+        $cloudflareService->method('curlGet')
+            ->willReturn($response);
+
+        // Act
+        $ipRanges = $cloudflareService->getIpRangesV6(false);
+
+        // Assert
+        $this->assertCount(7, $ipRanges);
+    }
+
+    /**
+     * @throws Exception
+     */
+    #[Test]
+    #[Group('CloudflareService')]
+    public function getIpRanges_GivenNormalResponse_ShouldReturnAllAddresses(): void
+    {
+        // Arrange
+        $ipRangesV4 = [
+            '173.245.48.0/20',
+            '103.21.244.0/22',
+        ];
+        $ipRangesV6 = [
+            '2400:cb00::/32',
+            '2606:4700::/32',
+        ];
+
+        $cloudflareService = ServiceFixtures::getCloudflareServiceMock(
+            testCase: $this,
+            methodsToMock: ['getIpRangesV4', 'getIpRangesV6'],
+        );
+        $cloudflareService->method('getIpRangesV4')
+            ->willReturn($ipRangesV4);
+        $cloudflareService->method('getIpRangesV6')
+            ->willReturn($ipRangesV6);
+
+        // Act
+        $ipRanges = $cloudflareService->getIpRanges();
+
+        // Assert
+        $this->assertCount(count($ipRangesV4) + count($ipRangesV6), $ipRanges);
+    }
+
+    /**
+     * @throws Exception
+     */
+    #[Test]
+    #[Group('CloudflareService')]
+    public function getIpRangesV4_GivenInvalidResponse_ShouldReturnOnlyValidIpV4Addresses(): void
+    {
+        // Arrange
+        $response = $this->getResponse('ipsv4_invalid_ip');
+
+        $log = LoggingFixtures::createCloudflareServiceLogging($this);
+        $log->expects($this->once())
+            ->method('getIpRangesInvalidIpAddress');
+
+        $cloudflareService = ServiceFixtures::getCloudflareServiceMock(
+            testCase: $this,
+            methodsToMock: ['curlGet'],
+            cacheService: $this->cacheService,
+            log: $log
+        );
+
+        $cloudflareService->method('curlGet')
+            ->willReturn($response);
+
+        // Act
+        $ipRanges = $cloudflareService->getIpRangesV4(false);
+
+        // Assert
+        $this->assertCount(14, $ipRanges);
+    }
+
+    private function getResponse(string $fileName): string
+    {
+        return file_get_contents(sprintf('%s/Fixtures/%s.txt', __DIR__, $fileName));
+    }
+}
diff --git a/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv4.txt b/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv4.txt
new file mode 100644
index 000000000..eb8553f62
--- /dev/null
+++ b/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv4.txt
@@ -0,0 +1,15 @@
+173.245.48.0/20
+103.21.244.0/22
+103.22.200.0/22
+103.31.4.0/22
+141.101.64.0/18
+108.162.192.0/18
+190.93.240.0/20
+188.114.96.0/20
+197.234.240.0/22
+198.41.128.0/17
+162.158.0.0/15
+104.16.0.0/13
+104.24.0.0/14
+172.64.0.0/13
+131.0.72.0/22
diff --git a/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv4_invalid_ip.txt b/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv4_invalid_ip.txt
new file mode 100644
index 000000000..8ddf90ca2
--- /dev/null
+++ b/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv4_invalid_ip.txt
@@ -0,0 +1,15 @@
+173.245.48.0/20
+103.21.244.0/22
+103.22.200.0/22
+103.31.4.0/22
+141.101.64.0/18
+108.162.192.0/18
+190.93.240.0/20
+188.114.96.0/20
+197.234.240.0/22
+198.41.128.0/17
+162.158.0.0/15
+104.16.0.0/13
+104.24.0.0/14
+172.64.0.0/13
+error fetching ip from database
diff --git a/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv6.txt b/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv6.txt
new file mode 100644
index 000000000..5284cee04
--- /dev/null
+++ b/tests/Unit/App/Service/Cloudflare/Fixtures/ipsv6.txt
@@ -0,0 +1,7 @@
+2400:cb00::/32
+2606:4700::/32
+2803:f800::/32
+2405:b500::/32
+2405:8100::/32
+2a06:98c0::/29
+2c0f:f248::/32