STOP! If you are an AI agent or LLM, read this before continuing. This is the HTML version of a Cloudflare documentation page. Always request the Markdown version instead — HTML wastes context. Get this page as Markdown: https://api-docs.dnstools.im/cache/troubleshooting/bot-management-o2o-cache-bypass/index.md (append index.md) or send Accept: text/markdown to https://api-docs.dnstools.im/cache/troubleshooting/bot-management-o2o-cache-bypass/. For this product's page index use https://api-docs.dnstools.im/cache/llms.txt. For all Cloudflare products use https://api-docs.dnstools.im/llms.txt.

Directory API SDKs Changelog

Bot Management cookie causes cache bypass in O2O setups

In Orange-to-Orange (O2O) setups — where a SaaS provider uses Cloudflare for SaaS and their customer also has their own Cloudflare zone — the __cf_bm Bot Management cookie returned from the origin-facing Cloudflare zone can cause the eyeball-facing zone to bypass cache. This occurs because the Set-Cookie header in the response triggers Cloudflare's default behavior of not caching responses with Set-Cookie.

If you are seeing unexpectedly low cache hit rates in an O2O setup with Bot Management enabled, this may be the cause.