Portal Home > Knowledgebase > Articles Database > cloudflare
cloudflare
| Posted by fsroute, 07-18-2011, 05:35 PM |
| do you use it? how does it work for you? do you think a lot of legit visitors get blocked? does it also drop ddos attacks?
|
| Posted by damoncloudflare, 07-19-2011, 12:28 AM |
| do you think a lot of legit visitors get blocked?"
Very few legit visitors get blocked (they can simply pass the captcha to enter the site). You can also override our behavior by whitelisting IPs.
Note: If you want to know why visitors get challenged, do a quick Google search for (wiki+cloudflare+data sources) & it will explain why we challenge particular IPs. I would post the link here, but WHT rules are a little stricter about commercial companies posting links back to their site.
DDoS: I will again state that we're not a DDoS solution. While the nature of our network can help with some attacks, larger attacks do cause us to go direct to your server. But you can do some cool things in your threat control panel to help stop IPs from hitting your server...
|
| Posted by fsroute, 07-19-2011, 09:07 AM |
| What kind of ddos attacks can cloudflare help prevent/slow down? How big is when cloudflare stops taking traffic to your site for forces the direct to server due to a ddos?
|
| Posted by damoncloudflare, 07-19-2011, 10:32 AM |
| What kind of ddos attacks can cloudflare help prevent/slow down?"
-Small attacks because of the nature of our network.
-Not monster DDoS attacks of a few GBPS.
"How big is when cloudflare stops taking traffic to your site for forces the direct to server due to a ddos?"
I don't have a hard number to provider because it is (a) up to engineering to decide, and (b)done if the attack against a site starts impacting other customers.
I have to reiterate that we're not a DDoS solution. I would also not advise someone to sign up for us just for that reason.
|
| Posted by Harel, 07-19-2011, 11:02 AM |
| i have reviewed about about cloudflare, what it does is it blocks ip's and users can't access their own site, here is a example:
my friend installed cloud flare in his server so the users can start their cloudflare , so what's the problem is he did everything correct and what happened when i ordered and tested the new cloudflare , as i set the cloudflare and then changed the nameservers me and all of my forum members couldn't get in the site and after that i wanted to remove cloudflare so i changed the nameservers but the problem was still there and now i am having problem with connecting cpanel
so i think cloudflare is just a waste.
Harel
|
| Posted by damoncloudflare, 07-19-2011, 02:23 PM |
| i have reviewed about about cloudflare, what it does is it blocks ip's and users can't access their own site, here is a example:"
CloudFlare does not challenge IPs at random (they appear in data sources that have indicated an online threat from that IP recently). Solutions to lower the probability a visitor will be challenged:
1. Change your security level to a lower level in your CloudFlare settings (settings->CloudFlare settings->Basic Security Level->Change to desired level.
2. Whitelist the IPs in your threat control panel. This overrides our behavior.
"my friend installed cloud flare in his server so the users can start their cloudflare , so what's the problem is he did"
You don't install CloudFlare on a server. CloudFlare is done through DNS.
"as i set the cloudflare and then changed the nameservers me and all of my forum members couldn't get in the site and after that i wanted to remove cloudflare "
What specifically happened? Error messages would be helpful to know.
"but the problem was still there and now i am having problem with connecting cpanel"
You have to access cpanel a little differently.
direct.yourdomain.com/cpanel
direct.yourdomain.com:2082
|
| Posted by bonjurkes, 07-19-2011, 07:02 PM |
| using cloudflare for sometime, medium security settings does pretty well, There is graph about your visitors threats etc, I tried high security level but it also blocked Google bots, so High security setting is a bit too high.
Their cache service is pretty good also, you can decide what they should cache, they can track outbound links, google analytics data, crypt email addresses from the source and some other stuff.
I am pretty happy about it for now
|
| Posted by damoncloudflare, 07-19-2011, 07:09 PM |
| I tried high security level but it also blocked Google bots,"
This actually shouldn't happen (Google is in our macro list). If you see an IP showing this is blocked, please let us know immediately which IP it was so we can find the IP range (search engines change ips all the time & we obviously aren't notified of these changes).
|
| Posted by Yujin, 07-19-2011, 07:56 PM |
| Or create your own sub-domain redirected to IP:
cpanel.yourdomain.com -> redirected http://123.456.789.10:2082
webmail.yourdomain.com -> redirected http://123.456.789.10:2095
|
| Posted by damoncloudflare, 07-19-2011, 08:09 PM |
| Or create your own sub-domain redirected to IP"
This will work as well.
|
| Posted by ttfan, 07-19-2011, 09:48 PM |
| I'm also considering cloudflare, as my host offer it. I have a few concerns:
1. What would happen if any of the cloudflare servers go down?
2. Are there any other situation where cloudflare can block legitimate traffic>?
|
| Posted by damoncloudflare, 07-19-2011, 11:35 PM |
| Hi,
We would pull out of that datacenter and route to the next one. If we have an issue in one datacenter, it would mean that only site visitors hitting that datacenter would have an issue.
Since our data sources are based on IP, there are potential issues for false/positives.
1. Visitors can still access the site by passing the captcha.
2. You can override our behavior by whitelisting the IP(s).
3. You can also adjust your security level to a lower level in CloudFlare settings by going to:
Settings->CloudFlare settings->Basic Security Level->Change to desired level.
|
| Posted by fshagan, 07-26-2011, 11:59 AM |
| Hmmm ... not a bad idea from a security standpoint! It removes the brute force attacks at yourdomain.com/cpanel
For damoncloudflare, how does the partner relationship work in regards to nameservers? I understand that when you install mod_cloudflare and the cPanel plugin on your server, you retain your regular name servers, and the DNS records will show your branded name servers for both Cloudflare enabled sites and non-enabled sites. Is this true?
I'm wondering how this works if that's the case.
|
| Posted by damoncloudflare, 07-26-2011, 02:11 PM |
| More details on our Hosting Partners' page on the site.
-Basically, the integration is done through cpanel and CNAMEs.
-The CNAME will point to a CDN subdomain for customers that activate it.
-You keep control of your NS.
|
| Posted by damoncloudflare, 07-26-2011, 02:15 PM |
| The link for hosting partners is posted here. I can't personally post it because of WHT rules.
|
| Posted by fshagan, 07-26-2011, 02:44 PM |
| OK, thanks. I understand how it works now!
|
Add to Favourites 
Print this Article
Also Read
