Main Menu in CloudFlare

    file

    Overview

    • general settings, which shows general settings, encryption level, caching and so on.

    In the right column you see

    • Under attack mode

    mode under attack, in this mode the site opens with a delay, the main purpose - protection from DDoS attacks. After enabling the option there will be available several levels of protection from low to high.

    • Developing mode

    the developing mode, disables caching on the site. Usually this option is required when debugging the site, when changes are immediately displayed on the resource, otherwise all the updates made will be displayed with a delay.

    • Purge Cache

    cache cleanup

    • DNS Settings

    Configuring DNS records for the domain

    Analytics

    Includes analysis of web traffic to your resource.

    • Requests

    queries, you can see the number of requests, the level of caching, geography and much more, the quality of statistics provided is not worse than that provided by specialized services.

    • Bandwidth

    bandwidth, shows the amount of traffic from the site.

    • Unique Visitors

    unique visitors.

    • Threats - threats, malicious requests will be shown, divided by threat type, threat source countries and so on.

    DNS

    contains a list of DNS records

    • Custom Nameservers

    allows you to create your own server names, a paid service.

    • DNSSEC

    dnssec technology protects against fake DNS. DNSSEC protected zones are cryptographically signed to ensure that received DNS records are identical to DNS records published by the domain owner.

    • CNAME

    A canonical name for an alias. The CNAME record is most often used to redirect a subdomain to another domain

    SSL/TLS

    Configure how secure the connection is with SSL certificate
    Off (not secure) Disables certificate control (traffic is not encrypted)
    Flexible Encrypts traffic between your browser and Cloudflare (a certificate is not required on the server), but in this case traffic from the server to cloudflare is not encrypted
    Full End-to-end encryption using a self-signed certificate on the server. (fully encrypted channel, but a self-signed certificate on the server)
    Full (strict) End-to-end encryption, but requires a trusted SSL or SSl Cloudflare Origin certificate on the server (fully encrypted channel)

    Firewall

    Access control by IP, country or request type.

    • Rate Limiting

    "rate limiting" mode, used to block IPs with malicious requests, like scanning, or if your data plan has a traffic limit. Yes, you are not mistaken, this item is present in another tab, as well as some others.

    Warning, the feature is paid. The first 10,000 requests are free. Then $0.05 per 10,000 queries.

    • Security Level

    Several levels are available, from "low" to "high".

    • Challenge Passage

    sets the time delay, indicating in what time the visitor from certain IP-addresses will be able to re-enter the site. You can choose a range from five minutes to one year.

    • Access Rules

    allows you to create access rules for specific IP addresses, Autonomous Autonomous System (ASN) or even countries. Blocking, whitelisting, JS cutoff and so on are available.

    Access

    you can protect access to internal applications without a VPN.

    Speed

    Allows you to analyze the loading speed of the site, as well as to optimize the settings to speed up the loading process.

    • Auto Minify

    Combines JavaScript, CSS, HTML files to reduce website load time.

    • Polish

    reduces image loading time through optimization. Additionally the WEBP codec is connected.

    • Railgun™

    Accelerates loading of dynamic content.

    • Mobile Redirect

    Redirects visitors using mobile devices to a site optimized for mobile devices.

    • Caching tab

    Controls the caching of the site.

    • Purge Cache

    clearing the cache, both full clearing and clearing specific files are possible.

    • Caching Level

    The level of caching.

    • Browser Cache Expiration

    Tells the browser how long to save cache files. During this period, the browser loads files from the local cache, speeding up the loading of pages. You can select a range from two hours to one year.

    Network

    Manages the network settings.

    • HTTP/2 + SPDY

    Speed up your site using HTTP/2 and SPDY technologies.

    • IPv6 Compatibility

    IPv6 compatibility.

    • Pseudo IPv4

    adds an IPv4 header to requests when the client uses IPv6 but the server only supports IPv4.

    • IP Geolocation

    automatically redirects the visitor to the regional version of the site, if one exists.

    • Maximum Upload Size

    Limits the maximum upload size to the site.

    • Response Buffering

    response buffering, enables or disables buffering, the option is only available on the Enterprise plan and above.

    • Traffic tab

    Traffic control and management.

    • Argo

    Optimizing network routes to reduce server response time.

    • Load Balancing

    Protect against service disruptions with load balancing, automatic failover, geographic routing and active server health checks.

    Apps
    Installation of add-ons from CloudFlare.

    • Drift

    allows you to create a form of chat to communicate with site visitors, in the free version there are restrictions.

    • Google Analytics

    analytics service from Google.

    • Lead Box

    allows you to organize a subscription on the site, the free version also has limitations.

    • Detectify

    Analyzes the site for vulnerabilities and malicious code.

    • Welcome Bar

    Welcome message at the top of the page, may contain information about promotions, announcements, and so on.

    • PACE

    sets the progress bar to load pages.

    *Scrape Shield

    protects images from hotlinks, masks mail, hides content.

    • Email Address Obfuscation

    Email address obfuscation to prevent bots from collecting emails.

    • Server-side Excludes

    automatically hide content from suspicious visitors. "Suspicious" visitors can be defined as automated news-grabbers, spam bots in site comments, bots that perform repeated, single-type actions like contacting a feedback form, and so on.

    • Hotlink Protection

    hotlink protection.