Do I need WAF for my API servers?

I have multiple flask app servers with flask rate limiting implemented for throttling requests.

What additional security benefits would Cloudflare WAF provide to keep the API servers secure?


I would recommend it and use it due to possible XSS or MySQLi or any other (un)known attack probes followed by OWASP release, which might sneak into your database server using your API if not properly secured.

And all that can be enabled with a single click and even possible to manually configure each per need.

Feel free to try out a Pro plan for a month or so and see how it goes.
You can always switch back to Free plan, if that’s the case.

Do I need the rate limiting implementation in my API servers?

Would Cloudflare WAF take care of rating limiting if I didn’t implement it in flask appserver code?

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.