EN
English
简体中文
Log inGet started for free

Blog

blog

A Clean IP Is Only Half the Battle: How Cloaking Closes a Vulnerability That a Proxy Doesn’t See

You chose a good proxy. Residential, with a clean reputation, the right GEO. The account is warmed up, the ad is approved. The campaign is launched – and a day or two later, it runs into restrictions. The proxy has nothing to do with it. The issue lies in another layer that most affiliate marketers simply do not configure.

This article is about how full ad campaign protection works and why proxies and cloaking solve different tasks – both of which are necessary.

What the Platform Checks – and When

Advertising platforms operate in two stages. Most affiliate marketers protect only the first one.

The first stage is during account creation and campaign launch. The platform looks at the IP, the history of this IP, ASN, GEO, device, and browser fingerprint. Here, the proxy solves the problem: it provides a clean residential or mobile IP that looks like a regular user from the target country.

The second stage happens after launch, while the campaign is running. Automated systems crawl links from active ads. During scaling or complaints, additional review may be triggered. A reviewer simply clicks the ad link and checks what is there.

At the second stage, the proxy does not help at all. The reviewer does not use your proxy. They open the URL directly. And if policy-sensitive or restricted content is located at that URL, the campaign gets flagged.

How Cloaking Works and Why It Is Needed

Cloaking is a traffic filtering system that sits in front of your landing page and analyzes every incoming request. Based on the analysis results, the system decides whether the visitor receives the real offer or a safe white page.

Parameters used for analysis:

IP and its ownership – automated systems and reviewers often use IPs from data centers belonging to large companies such as Facebook, Google, and verification services. These ranges are well known and constantly updated.

VPN and proxy status – many automated checks go through corporate VPNs or specialized proxies. This can be detected by ASN and connection characteristics.

User Agent and browser headers – bots and scanners often have characteristic signatures that differ from real browsers.

Request GEO – if your target is Germany and the request comes from a US IP without a VPN, this is not your intended audience. It is either a bot or non-targeted traffic that should not be allowed onto the offer.

Behavioral signals – page loading speed, request patterns, time on page.

A real user coming from an ad in the required GEO from a normal device passes all checks and sees the offer. A bot or reviewer receives a white page – neutral content that does not raise policy concerns.

What Kind of Proxies Are Needed for Each Task

It is important not to confuse the purpose here. Proxies have two fundamentally different roles in affiliate marketing.

Proxies for account management – this is what you use to log into Business Manager, create campaigns, and change settings. Here, you need residential or mobile proxies with an IP matching the account’s GEO. One account – one proxy, never cross them.

Thordata solves this problem with room to spare: more than 60 million residential IPs in 195 countries, including mobile proxies with real carrier addresses. Residential proxies start from $0.65 per GB, mobile proxies from $2.20 per GB. There are sticky sessions, which is important for account management – the IP remains constant within the session and does not change between logins.

Proxies for research and monitoring – this is a separate pool for collecting data on competitors, checking offers from different GEOs, and monitoring search results. Rotation works well here. Thordata offers dynamic rotation with automatic IP changes on request – ideal for tasks where IP freshness matters more than consistency.

These two pools must be kept strictly separate. Do not test competitors through the proxy you use to manage accounts.

White Page: Why It Is Not a Formality

One common mistake is treating a white page as something created just to satisfy a requirement. Any HTML with a couple of paragraphs. This does not work.

When a reviewer sees a white page, they evaluate its quality. Meaningless generated text, a page without navigation, or content that clearly does not match the ad can all raise suspicion and lead to further review.

A white page should look like a real website. Proper structure, normal text on the topic, working links, correct formatting. If the ad topic is finance, the white page should be about finance. If it is health, it should be about health.

Cloaking.House solves this problem with a built-in AI generator: it creates unique white pages on the topic in a few minutes. No need to do it by hand.

Full Scheme: How It Works Together

Here is what a working stack for a campaign in Facebook or Google with a policy-sensitive offer looks like:

Account and IP. A residential or mobile proxy from Thordata with an IP from the required GEO. One proxy per account. Sticky session – the IP does not change between logins. The proxy is verified via IPQualityScore or Scamalytics before being assigned to the account.

Campaign launch. The ad leads to your domain where Cloaking.House is installed. From the platform’s perspective during ad review, everything is clean: the domain is live, the page loads normally.

Traffic filtering. Cloaking.House analyzes every incoming request. A real user from the target GEO receives the offer. A bot, VPN, or review-related IP receives a white page.

Scaling. When increasing the budget, the frequency of checks increases. Cloaking works constantly in the background, allowing you to scale without unnecessary exposure.

Setting Up Cloaking.House: What Needs to Be Done

To launch, you need hosting with a domain, a white page, and a link to the offer.

Step 1. Create a white page

Use the AI generator in your Cloaking.House personal account or prepare your own. The main thing is real content, proper structure, and alignment with the ad topic.

Step 2. Upload the white page to hosting

Rename the file if it is named index.html – for example, to white.html. The cloaking file will take this place.

Step 3. Create a flow

In the Cloaking.House personal account: Flows – Create Flow. Specify White Page (your white page, “Load” method) and Offer Page (link to the offer, “Redirect” method). Configure filters: GEO, device, VPN, bots.

Step 4. Install index.php

Download index.php from your personal account, upload it to the root folder of the domain next to the white page file. From this point on, every request passes through filtering.

Step 5. Add your IP to the whitelist

This is a mandatory step for testing. Without a whitelist, you will see a white page because the system does not know you are the owner. Add your IP in the flow settings.

In the “Clicks” section, every visit is visible along with the reason for filtering. If the percentage of filtered clicks is high, this is normal for traffic under active review. If it is above 70%, check the GEO filter settings – they may be too strict.

Typical Mistakes That Break the Scheme

Using one proxy for multiple accounts. Facebook and TikTok build an account connection graph by IP. One restriction can put associated accounts at risk.

Testing the offer link from the managing proxy. Clicking the ad link from the management IP creates an account-landing-page connection that the platform can record. Only test through the whitelist in Cloaking.House.

Not checking proxies before assignment. Even with a good provider, a specific IP may have a history. IPQualityScore or Scamalytics – two minutes before assigning a proxy to an account.

White page without content. If a reviewer hits a white page and sees a blank page, in some cases this is worse than if they saw the offer. The white page must be a real page.

GEO mismatch between proxy, account, and target. All three must be aligned. Thordata covers 195 countries – finding the right GEO is not a problem, the main thing is not to mix it up during configuration.

Conclusion

Proxies and cloaking are neither competing nor duplicating tools. They address different vulnerabilities at different stages of a campaign’s lifecycle.

Thordata covers the IP layer: clean residential and mobile addresses from the required GEOs, sticky sessions for stable account management, and a large pool for rotation in research tasks.

Cloaking.House covers the landing-page layer: review systems and bots see a white page, while real users see the offer. Machine learning, real-time database updates, and a built-in AI for white pages.

Removing any of these elements means leaving an open vulnerability through which campaigns can fail.

Try Cloaking.House free for 7 days – cloaking.house. Promo code THORDATA gives a 30% discount on any plan.