Active threat response

Cloudflare does not have active threat response, IE where they detect an attack and mitigate on the fly?

Cloudflare has many detection systems in place to stop attacks.

What type of “Active” are you curious about? Are you looking for a system to protect you against previously unseen attack vectors?

Are you looking for a system to protect you against previously unseen attack vectors?

Correct, for example:

We detected an ip sending more than 50 requests to a single url in less that 5 minutes, that leaved our server without memory available.

In other scenario an ip was sending 2 to 3 requests per second to our site looking for databases backups.

On both scenarios we detected the problem after our site was down. We would like to find a way to prevent this kind of attacks.

I suggest Rate Limiting, to prevent excessive requests by an IP address to a URL. The URL can include wildcards.
https://support.cloudflare.com/hc/en-us/articles/115001635128-Configuring-Rate-Limiting-from-the-Cloudflare-Dashboard

Be cautious with that URL, as you don’t want to block legitimate visitors to your site.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.