CloudFlare is a content delivery network and distributed domain name server service marketed as improving website performance and speed and providing security.
Questions tagged [cloudflare]
567 questions
3
votes
2 answers
CloudFlare offers DNS root CNAMEs. Any resolution gotchas to be aware of?
I'm not that familiar with the inner workings of DNS, preferring to just add my CNAMEs and A records as appropriate, and leave the behind the scenes to other services. I host a few sites on Amazon S3, which clearly doesn't allow you to have an A…
jvc26
- 143
- 6
3
votes
2 answers
How does CloudFlare protect a web site?
I am a little confused about the protection CloudFlare offers. I am directing the www subdomain through CloudFlare with an Orange Cloud, and another subdomain (let's say direct) with a Grey Cloud. But when I tracert to www.example.com or…
paul simmons
- 145
- 10
3
votes
1 answer
Iptables list doesn't persist across restarts
I am trying to white list CloudFlare's IP addresses on my server by issuing these:
iptables -N whitelist
iptables -A whitelist -s 204.93.177.0/24 -j ACCEPT
iptables -A whitelist -s 199.27.128.0/21 -j ACCEPT
iptables -A whitelist -s 173.245.48.0/20…
Bob the Builder
- 33
- 2
2
votes
0 answers
How to avoid gmail orange mark and spam filter when using cloudflare proxies?
I send emails from my site via php smtp method connected to 'smtp.gmail.com' on 465, and account added to GSuite. All my emails falls in spam folder in Gmail. The kind of emails is just password recovery or email confirmation, but gmail shows orange…
Valik Tralik
- 21
- 2
2
votes
1 answer
Too many open files error on webserver with wordpress site on litespeed server
I am running a wordpress site on a litespeed webserver, caching enabled using the litespeed plugin, with cloudflare as a CDN.
Every few days or so, the logs start filling with the below error. Not once, but literally 1000 times a second. Needless to…
jberculo
- 123
- 4
2
votes
3 answers
IPv6 dynamic DNS client for Cloudflare
Is there a dynamic DNS client for Linux which can update IPv6 at Cloudflare?
I have a router from my internet provider, which assigns both v4 and v6 addresses. And I'm using v6 to access my host from the outside because in this case, I don't need to…
German Lashevich
- 131
- 6
2
votes
1 answer
How to use Route53 NS output to set NS for Cloudflare subdomain using terraform?
I have created a Zone In AWS Route53 as following
resource "aws_route53_zone" "my-app" {
name = "${var.zone_name}"
}
data "aws_route53_zone" "selected" {
name = "appgggghello.com."
}
output "ns" {
value =…
sanjayparmar
- 633
- 8
- 19
2
votes
3 answers
Delegating only a third level zone (a.b.example) to CloudFlare
I am in the process of trying out CloudFlare. I host my own DNS (b.example), and I have created a distinct third level zone (a.b.example). I put glue records in the b.example zone and setup the a.b.example zone in its own separate file. (I am using…
Alien Life Form
- 2,309
- 2
- 21
- 32
2
votes
1 answer
Why cant Office 365 find my CName record for autodiscover?
The DNS is at Cloudflare.
The setup wizard gave me the choice
1) Set up my online services for me. (Recommended)
Next, you'll update your name server DNS records to give Office 365 permission to set up the rest of your online services.
2) I'll…
Kirsten
- 185
- 5
- 20
2
votes
1 answer
Nginx reverse proxy and cloudflare - Send country code to backend app
I am trying to detect the visitors country. I have the geoip option checked in the cloudflare dash and it adds a CF-IPCountry header to request headers but I am unable to pass this to my backend app through the nginx proxy. What am I doing…
jinyus
- 153
- 1
- 2
- 6
2
votes
3 answers
Fail2ban unban action fails with Cloudflare
I'm trying to setup Cloudflare blocking with fail2ban using this guide and while it bans the IP correctly, fail2ban cannot unban the IP from Cloudflare either after timeout or with manual shell command. It always returns 400 Bad Request error.
Am I…
Vinit Wankhede
- 33
- 6
2
votes
1 answer
What is preferred: Pagerule or 'Always use Https'?
I want to ensure that all traffic coming to my servers (including a wordpress server and others hosted on Google comopute) via Cloudflare are https only.
At the moment I used this page rule:
Then I realised there is this option:
Which is the more…
Anthony Kong
- 3,288
- 11
- 57
- 96
2
votes
2 answers
Enable Both X-Real-IP and X-Forwarded-For in Nginx
How do I enable both X-Real-IP and X-Forwarded-For in Nginx? I currently have the following to get real IPs in Docker network.
set_real_ip_from 172.18.0.0/32;
real_ip_header X-Real-IP;
real_ip_recursive on;
I would also like to pass real IPs…
j7an
- 21
- 1
- 2
2
votes
1 answer
IPv6 only server through Cloudflare gateway
In the past, one could use an IPv6 server through sixxs.net gateway. Now the service is gone.
However, I found there is a free Cloudflare gateway. I assume the IPv6 server is to be associated to a domain or subdomain through an AAAA record. I…
antonio
- 253
- 6
- 14
2
votes
1 answer
Route 53 as backup to Cloudflare DNS
I use cloudflare as my main DNS provider right now but am looking to add route 53 as another provider/backup in case one or the other goes down. (DYN did this last year and it caused a headache with just one provider)
It is my understanding that I…
Chris Muench
- 487
- 3
- 10
- 31