Technically, the error may stem from a variety of benign sources. Many corporate servers employ Web Application Firewalls (WAFs) designed to block traffic that looks suspicious, such as automated scrapers or traffic from unusual geographic locations. For a user attempting to access an Australian domain (.com.au) from abroad, or perhaps using a VPN, the security system may incorrectly flag them as a bot. While this is a defense mechanism to protect the site from cyber threats, it reveals a misalignment of priorities. Companies invest heavily in cybersecurity to protect proprietary data—a necessary measure—but often fail to ensure that their public-facing sustainability portals are equally robust and accessible. The over-protective firewall inadvertently creates a "walled garden" around data that should be public property.

WAF, CDN, and security rules

Access Denied Https Wwwxxxxcomau Sustainability ((better)) Jun 2026

Technically, the error may stem from a variety of benign sources. Many corporate servers employ Web Application Firewalls (WAFs) designed to block traffic that looks suspicious, such as automated scrapers or traffic from unusual geographic locations. For a user attempting to access an Australian domain (.com.au) from abroad, or perhaps using a VPN, the security system may incorrectly flag them as a bot. While this is a defense mechanism to protect the site from cyber threats, it reveals a misalignment of priorities. Companies invest heavily in cybersecurity to protect proprietary data—a necessary measure—but often fail to ensure that their public-facing sustainability portals are equally robust and accessible. The over-protective firewall inadvertently creates a "walled garden" around data that should be public property.

WAF, CDN, and security rules