Do people think CloudFlare will stop DDoS attacks?

David Beroff

David Beroff

Well-known member
Registered
Joined
Jun 14, 2016
Messages
1,498
Points
63
Nowadays on hosting forums, I have been seeing more and more people start recommending CloudFlare for the prevention of DDoS attacks, Why is this? and can CloudFlare really anti large DDOS attacks? What is your experience?
 
EcommIndiaCloudIT

EcommIndiaCloudIT

Member
Registered
Joined
Dec 28, 2016
Messages
64
Points
0
First things first. You can never "Stop" a DDOS attack. You can only "mitigate" it. Keeping this in mind we should always look at the best ways to mitigate rather than prevent or stop and when you start looking at the features offered by various providers with this mindset, things start to become very clear.

Second thing to understand is that when you use a 3rd party provider for DDOS, almost always your data is being re-routed through their network which means you are adding latency every time someone wants to visit your site. Needless to say if your data is highly confidential, then this is a bigger security problem/loophole and you should look at implementing your own DDOS mitigation solutions rather than letting your confidential data go through filtering networks that you have no control over.

Now, as I understand CoudFlare provides various level of DDOS protection. Unless you are paying for the highest plan they are offering, the whole thing is pointless since the lower plans can easily be implemented on your own sever using web firewalls. If you are already on something like AWS, then even the highest plan that cloud flare offers becomes pointless since you have so many other ways you can mitigate this using the tools within AWS.

However, there are times when you would rather just let someone else's network take the load and do all the offsite data scrubbing for you before it hits your server. So unless you are a multi million dollar corporation, its better off you implement your own DDOS mitigation solutions.
 
VirtuBox

VirtuBox

Well-known member
Registered
Joined
May 3, 2016
Messages
1,622
Points
83
Cloudflare is the first step to be protected against DDoS, but with free plans, it require to use a special page during 5 seconds to check your browser and make sure you are real visitor, and it doesn't protect your server, only your domains with the Cloudflare Proxy.
If an attacker find your server IP, he will be able to DDoS it and Cloudflare will be useless.

DDoS attacks will not stop in the next few years, the last one against OVH with up to 1TBps is the proof DDoS is still used and it's easier to DDoS now using any device connected to internet.
But that's the job of Hosting Providers to fight against DDoS, Cloudflare will help them, because they do a very good job with their DNS service, but they still have a small network compare to company like OVH (7TB Bandwidth and 5TB Exta for DDoS)
 
RDO Servers

RDO Servers

Well-known member
Registered
Joined
Apr 3, 2015
Messages
1,027
Points
83
Yes Cloudflare will stop DDoS attacks from reaching your server if you have the appropriate Cloudflare plan and the attack is not directed at your server IP directly.

True DDoS protection should use one of 2 methods.

1) In house. Very expensive to have enough bandwidth and hardware in house to protect against large attacks. Many providers advertise their in house protection, but may only be able to protect against attacks < 2Gbps.

2) Tunneled protection. This is when you have your own IP block which is being announced by the DDoS protection providers routers. All traffic will go to their routers, through their DDoS protection network, then back to your server's via a GRE tunnel. This way, your network only accepts traffic that is encapsulated in the GRE tunnel (filtered traffic) and blocks all other traffic.
 
DTS-NET

DTS-NET

Well-known member
Hosting Provider
Registered
Joined
Feb 6, 2017
Messages
93
Points
8
Have been using cloudflare since they started.
The awesome thing about cloudflare it works and they have offered more options year after year and keep investing which is what you want out of a company and they work with us partners and awesome to see how they have grown
 
RyanK

RyanK

New member
Registered
Joined
Feb 7, 2017
Messages
4
Points
0
David Beroff

David Beroff

Well-known member
Registered
Joined
Jun 14, 2016
Messages
1,498
Points
63
RDO Servers said:
Yes Cloudflare will stop DDoS attacks from reaching your server if you have the appropriate Cloudflare plan and the attack is not directed at your server IP directly.
Click to expand...
Exactly I had an opportunity to see DDoS attacks on my site and I enabled Cloudflare "I'm under attacks" and it worked as a charm but I dislike this page

cloudflare redirect page ddos.png

My website visitors can leave the site because they think my website is having problem or took so long to access the website..etc
Is there a way to edit that page or I must change to paid plan?

RDO Servers said:
2) Tunneled protection. This is when you have your own IP block which is being announced by the DDoS protection providers routers. All traffic will go to their routers, through their DDoS protection network, then back to your server's via a GRE tunnel. This way, your network only accepts traffic that is encapsulated in the GRE tunnel (filtered traffic) and blocks all other traffic.
Click to expand...
I like this way, it will filter traffic coming to my site and removed DDoS IPs while my site is still running normally.
If compared with DDoS server from Cloudflare which way has more advantages?
 
RyanK

RyanK

New member
Registered
Joined
Feb 7, 2017
Messages
4
Points
0
Users on any of the paid plans have the ability to customize that under attack message.
 
Dr. McKay

Dr. McKay

Well-known member
Registered
Joined
Nov 26, 2016
Messages
565
Points
28
Dr. McKay
I have same thought as David.
It is possible to use DDOS protection from Cloudflare without using that page? for example, i can replace custom attack message by my homepage? like my website is working normally but it is protected from Cloudflare.
 
RyanK

RyanK

New member
Registered
Joined
Feb 7, 2017
Messages
4
Points
0
If you don't have I'm Under Attack Mode (IUAM) on, or have created page rules to perform additional checks, it's very unlikely that the interstitial page would come into play. There is also a new Rate Limiting feature that is coming soon (sign up for early access at https://www.cloudflare.com/rate-limiting/) that would prevent that screen from appearing. However, the option to customize that screen (and any other error related screens) is still limited to paid plans.
 
Gecko

Gecko

Well-known member
Registered
Joined
Aug 25, 2016
Messages
364
Points
0
Gecko
Thanks for sharing this future feature. I have not heard anything about it but it seems like it's going to be real nice. Adding some security against DDoS attacks and brute force will come in very handy these days.

Do you know if their rate limiting is going to be available on all account levels?
 
You must log in or register to reply here.
Older Threads
steitieh
is Namecheap.com an Enom reseller?
Replies
9
Views
10,107
NameHero
Klaus Warzecha
How fast is 1mbps? 2mbps? 3mbps? 4mbps?
2
Replies
34
Views
31,469
MoniqueHuff
Laurence Flynn
Happy New Year and nice to meet you all!
Replies
12
Views
4,593
Gecko
Klaus Warzecha
LiteSpeed vs Apache Web Server
Replies
15
Views
8,543
thart
FerdieQO
Cloudlinux vs Centos
Replies
18
Views
13,807
spidy
Newer Threads
David Beroff
2CheckOut vs Stripe
Replies
16
Views
8,982
David Beroff
Cheerag Nundlall
Free VPS from 5jelly?
2
Replies
26
Views
21,833
Gmeister4
Steve32
WTB Looking for link building services
Replies
0
Views
2,469
Steve32
Steve32
WHMCS knowledgebase should be written by you or buy premade articles?
Replies
13
Views
8,910
hostinfuse
fwh
Congratulations, VirtuBox! Moderator of the Month for December 2016!
Replies
12
Views
4,357
IgorG
Latest Threads
M
Need suggestions about dedicated servers
Replies
0
Views
115
marylouis
Jinendra Khobare
Hello!
Replies
0
Views
65
Jinendra Khobare
B
HELLO ALL MEMBER
Replies
0
Views
57
BestWarez
J
Jtti Black Friday Special: Hong Kong VPS Cloud Servers Starting at $4.16/Month with Up to 70% Discount
Replies
1
Views
174
marylouis
S
I'm unable to buy domain name from OVH.com
Replies
1
Views
87
BlueLeaf
Recommended Threads
Holly Nicole
Maintenance Mode
Replies
3
Views
2,848
Holly Nicole
Mr.Wizard
How do you start a reseller web hosting company?
Replies
5
Views
2,735
nogics
D
  • Locked
WTB WTB Sports and Gambling sites
Replies
3
Views
4,531
Padsall
Chris Worner
  • Locked
Is 10 mbps considered as a fast internet?
2
Replies
32
Views
17,013
junrose123
arronmattwills
How to create multi-businesses and make it sustainable?
Replies
1
Views
2,173
vinaya
Similar Threads
D
Help Needed with Setting Up Cloudflare R2 for Object Storage
Replies
0
Views
162
dilshanking
Dopani
Integrate Cloudflare reCAPTCHA into your website?
Replies
2
Views
1,488
YouStable
Mujkanovic
Difference between Flexible, Full and Full (strict) in Cloudflare
Replies
0
Views
2,886
Mujkanovic
Mujkanovic
Do I need to enable Proxy DNS in Cloudflare to use Cloudflare SSL?
Replies
6
Views
2,041
myresellerhome
David Beroff
Using Let's Encrypt with Cloudflare?
Replies
3
Views
1,654
David Beroff

Latest postsNew threads

Latest Hosting OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • cpanel
  • dedicated
  • free
  • hello
  • hosting
  • hosting services
  • marketing
  • offers
  • seo
  • server
  • services
  • vps
  • web
  • web hosting
  • website
  • wordpress
    • Top