Active threat response


#1

Cloudflare does not have active threat response, IE where they detect an attack and mitigate on the fly?


#2

Cloudflare has many detection systems in place to stop attacks.

What type of “Active” are you curious about? Are you looking for a system to protect you against previously unseen attack vectors?


#3

Are you looking for a system to protect you against previously unseen attack vectors?

Correct, for example:

We detected an ip sending more than 50 requests to a single url in less that 5 minutes, that leaved our server without memory available.

In other scenario an ip was sending 2 to 3 requests per second to our site looking for databases backups.

On both scenarios we detected the problem after our site was down. We would like to find a way to prevent this kind of attacks.


#4

I suggest Rate Limiting, to prevent excessive requests by an IP address to a URL. The URL can include wildcards.

Be cautious with that URL, as you don’t want to block legitimate visitors to your site.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.