Main Menu in CloudFlare
- general settings, which shows general settings, encryption level, caching and so on.
In the right column you see
- Under attack mode
mode under attack, in this mode the site opens with a delay, the main purpose - protection from DDoS attacks. After enabling the option there will be available several levels of protection from low to high.
- Developing mode
the developing mode, disables caching on the site. Usually this option is required when debugging the site, when changes are immediately displayed on the resource, otherwise all the updates made will be displayed with a delay.
- Purge Cache
- DNS Settings
Configuring DNS records for the domain
Includes analysis of web traffic to your resource.
queries, you can see the number of requests, the level of caching, geography and much more, the quality of statistics provided is not worse than that provided by specialized services.
bandwidth, shows the amount of traffic from the site.
- Unique Visitors
- Threats - threats, malicious requests will be shown, divided by threat type, threat source countries and so on.
contains a list of DNS records
- Custom Nameservers
allows you to create your own server names, a paid service.
dnssec technology protects against fake DNS. DNSSEC protected zones are cryptographically signed to ensure that received DNS records are identical to DNS records published by the domain owner.
A canonical name for an alias. The CNAME record is most often used to redirect a subdomain to another domain
Configure how secure the connection is with SSL certificate
Off (not secure) Disables certificate control (traffic is not encrypted)
Flexible Encrypts traffic between your browser and Cloudflare (a certificate is not required on the server), but in this case traffic from the server to cloudflare is not encrypted
Full End-to-end encryption using a self-signed certificate on the server. (fully encrypted channel, but a self-signed certificate on the server)
Full (strict) End-to-end encryption, but requires a trusted SSL or SSl Cloudflare Origin certificate on the server (fully encrypted channel)
Access control by IP, country or request type.
- Rate Limiting
"rate limiting" mode, used to block IPs with malicious requests, like scanning, or if your data plan has a traffic limit. Yes, you are not mistaken, this item is present in another tab, as well as some others.
Warning, the feature is paid. The first 10,000 requests are free. Then $0.05 per 10,000 queries.
- Security Level
Several levels are available, from "low" to "high".
- Challenge Passage
sets the time delay, indicating in what time the visitor from certain IP-addresses will be able to re-enter the site. You can choose a range from five minutes to one year.
- Access Rules
allows you to create access rules for specific IP addresses, Autonomous Autonomous System (ASN) or even countries. Blocking, whitelisting, JS cutoff and so on are available.
you can protect access to internal applications without a VPN.
Allows you to analyze the loading speed of the site, as well as to optimize the settings to speed up the loading process.
- Auto Minify
reduces image loading time through optimization. Additionally the WEBP codec is connected.
Accelerates loading of dynamic content.
- Mobile Redirect
Redirects visitors using mobile devices to a site optimized for mobile devices.
- Caching tab
Controls the caching of the site.
- Purge Cache
clearing the cache, both full clearing and clearing specific files are possible.
- Caching Level
The level of caching.
- Browser Cache Expiration
Tells the browser how long to save cache files. During this period, the browser loads files from the local cache, speeding up the loading of pages. You can select a range from two hours to one year.
Manages the network settings.
- HTTP/2 + SPDY
Speed up your site using HTTP/2 and SPDY technologies.
- IPv6 Compatibility
- Pseudo IPv4
adds an IPv4 header to requests when the client uses IPv6 but the server only supports IPv4.
- IP Geolocation
automatically redirects the visitor to the regional version of the site, if one exists.
- Maximum Upload Size
Limits the maximum upload size to the site.
- Response Buffering
response buffering, enables or disables buffering, the option is only available on the Enterprise plan and above.
- Traffic tab
Traffic control and management.
Optimizing network routes to reduce server response time.
- Load Balancing
Protect against service disruptions with load balancing, automatic failover, geographic routing and active server health checks.
Installation of add-ons from CloudFlare.
allows you to create a form of chat to communicate with site visitors, in the free version there are restrictions.
- Google Analytics
analytics service from Google.
- Lead Box
allows you to organize a subscription on the site, the free version also has limitations.
Analyzes the site for vulnerabilities and malicious code.
- Welcome Bar
Welcome message at the top of the page, may contain information about promotions, announcements, and so on.
sets the progress bar to load pages.
protects images from hotlinks, masks mail, hides content.
- Email Address Obfuscation
Email address obfuscation to prevent bots from collecting emails.
- Server-side Excludes
automatically hide content from suspicious visitors. "Suspicious" visitors can be defined as automated news-grabbers, spam bots in site comments, bots that perform repeated, single-type actions like contacting a feedback form, and so on.
- Hotlink Protection