I have experience with Cloudflare; I use them all the time, including WAF and DNS. I'm using Cloudflare on all my domains, and any client domains I have, I set them up with a Cloudflare account. I've been using Cloudflare DNS product since they came out; that's basically the main use of what they offer.
Since I'm managing security tools and focusing on email security, Cloudflare mainly helps me take care of DNS records that are related to email security, such as SPF, DMARC, and DKIM. That's the main scope of my interest there. I'm monitoring those records, checking if somebody has altered them, and gathering evidence if needed to warn them not to do that anymore. Cloudflare is a great product with many useful features. A colleague of mine is leveraging the API to get all the records periodically. We're gathering them to review if everything is set up properly without the need for manual review. I appreciate the additional details about the statistics since the DKIM enablement process requires visibility over whether the DKIM keys are being used and if there were any queries against them. The statistics part lets me briefly validate if the DKIM record is in use because over time, the records stop being used and aren't cleaned up because nobody requested that. The reporting and auditing tools are important in the use cases I mentioned earlier. There are many features I do not configure but know exist, such as web access firewall to set up accesses to certain DNS records. We were also using the Workers part of Cloudflare to share data from Cloudflare to an external app called Salt, which helped us understand where our API endpoints are in our estate. Based on that, we got information about endpoint locations and unusual API queries. It simplifies management because you can create domain groups and associate them to countries, allowing them to manage them independently. It helps me understand which country might be responsible for specific domains. It's a great product because it's scalable, has great coverage, and is mature with good defenses against DDoS attacks.
We are resellers of Cloudflare ( /products/cloudflare-reviews ), and we work with the entire technology stack. Cloudflare ( /products/cloudflare-reviews ) serves as a single pane of glass for functionalities such as performance, security, and bot management.
We subscribed to Cloudflare for cloud-based services, and we are planning to explore its additional features as it aligns with our organizational needs.
In my company, Cloudflare's PoC phase is going on, and so it is not an active contract we have had with them, but just basic experience is what I have with DDoS protection. I basically use Cloudflare for DDoS protection. My company recently tested the tool for its DDoS protection capabilities.
We launched the application on the WLP engine. Our website hosts various images, media files, and other external files. We use Cloudflare to ensure faster website delivery.
Managed Services Manager at Adapture Technology Group
MSP
Top 5
Mar 20, 2024
Cloudflare serves as both a Content Delivery Network and a security system. When integrated into the software, it optimizes content loading speeds, ensuring users access content swiftly. Additionally, Cloudflare safeguards websites from various cyber threats, providing security.
Senior Cloud Solution Architect at Integrated Technology Solution Group (ITSG)
Real User
Top 5
Jan 18, 2024
I had one design that I did, and it was related to Cloudflare API Gateway. Anything that comes in the front-end URL was basically something to deal with Cloudflare API gateway. Based on separations required in Cloudflare DNS, I set the traffic manager and then manage areas, like configuration, DDoS, and all such related areas. The aforementioned area helps manage the traffic that comes in, the load of the application, how you want to secure access and authentication, and then have the authorization. In Cloudflare DNS, I use all the service modules the tool offers. The use cases attached to the solution can be related to areas like performance checks, protection, security modules, scalability, and allocation frequency of checking DNS.
Cloudflare is mostly a CDN service plus DDoS protection, but they are now offering services like cloud object storage, which AWS under S3. Cloudflare provides a cheaper alternative. They also have zero trust and load-balancing services.
IT Security Director at a financial services firm with 1,001-5,000 employees
Real User
Top 20
Mar 20, 2023
I use the solution for DNS management. What I do is every domain we have has some web resources available. Instead of sending everything directly to my web server, what we do is send all the DNS requests for that domain to Cloudflare. It is DNS security enabled to defend those websites from attacks.
Cloudflare enhances web performance and security with features like CDN caching and DDoS mitigation while providing easy DNS management and intuitive setup through its user-friendly dashboard.Cloudflare is recognized for its comprehensive web security and performance solutions. Speed improvements are achieved through caching mechanisms and DDoS protection, combining ease of DNS management with flexible page rules. The robust analytics and threat insight tools provide valuable data, assisted...
I have experience with Cloudflare; I use them all the time, including WAF and DNS. I'm using Cloudflare on all my domains, and any client domains I have, I set them up with a Cloudflare account. I've been using Cloudflare DNS product since they came out; that's basically the main use of what they offer.
Since I'm managing security tools and focusing on email security, Cloudflare mainly helps me take care of DNS records that are related to email security, such as SPF, DMARC, and DKIM. That's the main scope of my interest there. I'm monitoring those records, checking if somebody has altered them, and gathering evidence if needed to warn them not to do that anymore. Cloudflare is a great product with many useful features. A colleague of mine is leveraging the API to get all the records periodically. We're gathering them to review if everything is set up properly without the need for manual review. I appreciate the additional details about the statistics since the DKIM enablement process requires visibility over whether the DKIM keys are being used and if there were any queries against them. The statistics part lets me briefly validate if the DKIM record is in use because over time, the records stop being used and aren't cleaned up because nobody requested that. The reporting and auditing tools are important in the use cases I mentioned earlier. There are many features I do not configure but know exist, such as web access firewall to set up accesses to certain DNS records. We were also using the Workers part of Cloudflare to share data from Cloudflare to an external app called Salt, which helped us understand where our API endpoints are in our estate. Based on that, we got information about endpoint locations and unusual API queries. It simplifies management because you can create domain groups and associate them to countries, allowing them to manage them independently. It helps me understand which country might be responsible for specific domains. It's a great product because it's scalable, has great coverage, and is mature with good defenses against DDoS attacks.
We are resellers of Cloudflare ( /products/cloudflare-reviews ), and we work with the entire technology stack. Cloudflare ( /products/cloudflare-reviews ) serves as a single pane of glass for functionalities such as performance, security, and bot management.
We subscribed to Cloudflare for cloud-based services, and we are planning to explore its additional features as it aligns with our organizational needs.
In my company, Cloudflare's PoC phase is going on, and so it is not an active contract we have had with them, but just basic experience is what I have with DDoS protection. I basically use Cloudflare for DDoS protection. My company recently tested the tool for its DDoS protection capabilities.
We launched the application on the WLP engine. Our website hosts various images, media files, and other external files. We use Cloudflare to ensure faster website delivery.
Cloudflare is typically a firewall. There are several editions available, such as the free edition.
Cloudflare serves as both a Content Delivery Network and a security system. When integrated into the software, it optimizes content loading speeds, ensuring users access content swiftly. Additionally, Cloudflare safeguards websites from various cyber threats, providing security.
I had one design that I did, and it was related to Cloudflare API Gateway. Anything that comes in the front-end URL was basically something to deal with Cloudflare API gateway. Based on separations required in Cloudflare DNS, I set the traffic manager and then manage areas, like configuration, DDoS, and all such related areas. The aforementioned area helps manage the traffic that comes in, the load of the application, how you want to secure access and authentication, and then have the authorization. In Cloudflare DNS, I use all the service modules the tool offers. The use cases attached to the solution can be related to areas like performance checks, protection, security modules, scalability, and allocation frequency of checking DNS.
We use the solution for all our products hosted on Azure.
Cloudflare is mostly a CDN service plus DDoS protection, but they are now offering services like cloud object storage, which AWS under S3. Cloudflare provides a cheaper alternative. They also have zero trust and load-balancing services.
I use it for my private work network and Office 365 network for both DNS and access through Cloudflare.
I use the solution for DNS management. What I do is every domain we have has some web resources available. Instead of sending everything directly to my web server, what we do is send all the DNS requests for that domain to Cloudflare. It is DNS security enabled to defend those websites from attacks.
Cloudflare DNS is the primary DNS resolver for our domains. We are using it for CD.
We use Cloudflare DNS for websites when our clients want to have good protection. We can filter any traffic before sending it to their web page.