I found 2 difference answers:
On the support site: Understanding-Cloudflare-DDoS-protection
For all plan types, Cloudflare provides unmetered mitigation of DDoS attacks including DNS attacks, and network Layer 3, 4, and 7 attacks.
But the information for all plans is different: Compare-Features
Unmetered mitigation of volumetric DDoS
Cloudflare’s unmetered mitigation of DDoS stops illegitimate volumetric traffic at the Cloudflare edge. All Cloudflare plans include unmetered mitigation without fear of being dropped.
Enterprise-grade mitigation of DDoS
Cloudflare’s enterprise-grade mitigation of DDoS attacks against layers 3, 4, & 7 includes prioritized IP ranges and routing, ensuring maximum speed and availability.
Does anyone know the exact difference of DDoS protection of all plans? What is included, what not? Is Layer 3, 4 and 7 included in Free/Pro/Business or not? What kind of protection is included exactly in Free/Pro/Business and in Enterprise?