Genuinely curious, is there a way of tuning how this protection is triggered? If there is, perhaps filter out those ISPs/countries from which most attack originate? Not a cloudflare user myself -- for me it's mostly been a nuisance.
Cloudflare offers more options to paid customers than to free customers, but with basic Cloudflare Rules you can usually configure your firewall and presents to your liking.