If you have ever made any research about Cloudflare DDoS protection, you must probably have seen comments like “Free version of Cloudfare could be defused really easily, it is not effective.” often. Actually, this is a wrong point of view caused by the incorrect configuration of the server or Cloudflare.
How to prevent DDoS Attacks
First of all, while setting Cloudflare you must check if your ip address is being hidden. If you set your servers security wall in a way that only the visitors, who are visiting through Cloudflare can pass, then you can prevent the attacks that are directed to your origin ip address.
Of course, you should first have knowledge about the server, you should analyze the logs for any unusual situation, and you should also know how big the attack is before making anything.
Free version of the Cloudflare plan protects your site from any DDoS attack –including Layer 7 DDoS attacks– Of course, the payed versions offer extra options according to your needs, however it doesn’t mean that you must pay for a higher level of protection, if you are under a really huge attack.
If you are sure about that you have made the essential settings the server and Cloudflare right, during the attack Cloudflare would give the notification “I’m Under Attack“, in this way you can prevent a lot of attacks.
A Large DDoS Attack
A few days ago, I saw a thread about DDoS in a forum site. A web site which is placed in a shared hosting has the problem of corrupting because of DDoS attacks, although it is being secured by Cloudflare. These attacks were continuing after transferring it to VDS and the new server was corrupting again.
Of course, finding the source of the problem in Cloudflare would be the easy and wrong way. I offered transferring their server to Vultr and building and also configuring the server.
In a while we started the transferring process. After transferring our customer’s site to the new servers, the attacks continued. The site was under a huge attack.
The attackers were trying to stop the server from answering by making billions of query requests with random letters such as /?s=abc , /?s=xyz .
In the last 24 hours more than 291,000,000 requests has been sent to the server.
We have a look at that in 7 days we see that appr. 34,300 HTTP requests are made in a week in Turkey. If we consider the fact that this site is a Turkish used by Turkish users, the requests of the real visitors are a small part in comparison to the requests made by the attackers.
The attackers kept on attacking for more than 48 hours. They were from all around the world, mostly from Asia.
DDoS attacks can affect the limits of the server’s band width. In this attack more than 1.21TB in less than 24 hours can be seen.
Luckily this dataflow took place between the attackers and Cloudflare. The server wasn’t affected by it.
In our NGINX WordPress installation service, we transfer your sites to the cloud servers and set Cloudflare DDoS protection for your site. We take every precaution against the attackers, who are trying to bypass Cloudflare and reach to your server. All these services are made completely by us. We also offer any kind of technical help in case of an attack, don’t worry about it.
If you think that that kind of an attack is possible to your site, take precaution before it is too late. If you do not take precaution your site may not only got shot down for a long time, it may also be punished by Google.
Cloudflare will contribute to the security of your website. I suggest you, prefer it in all your projects. I’m not even talking about the site speed performance which Cloudflare is offering. 🙂