General Guidances - New User

Hello all,

new to Cloudflare(Pro Plan) and I would like to ask a few questions just to make sure I am in the right track. I have already updated the NameServers and now all the traffic goes through Cloudflare.

My questions are:

  1. Let’s say that have a domain, which is proxied. I have a subdomain, which is also proxied. Does this mean that every traffic that is proxied, goes through Cloudflare?

  2. I have enabled WAF in my account, this means that all the websites that are proxied are protected from Cloudflare WAF?

  3. If i understand correctly Rate Limiting offers additional security to my proxied websites. Do you recommend to enable this feature or for now leave it off?

  4. From now on, all my proxied websites are protected from Cloudflare? For my main website is in Wordpress, while my web app is written in PHP & JavaScript. Am i protected from DDoS and various other threats?

Thank you!

It does.

Only those where WAF is enabled.

If you are not sure that you need it, you probably dont. Also, it is a paid feature.

Yes and no. You are definitely protected from any non level-7 DDoS attacks. As for attacks on an HTTP level, Cloudflare will still attempt to block these as well, but it might require additional tweaking from your side (security level, IP access rules, firewall rules, rate limiting, etc.).

1 Like

Thank you for the reply. About the WAF, if I have it enabled it will protect all my proxied domains?

For example it will protect both and ?

Is hello actually a domain or just a hostname? Anyhow, assuming is the domain on which you have activated WAF, it will apply to all proxied hosts.

This topic was automatically closed after 31 days. New replies are no longer allowed.