I have wordpress site and i am using Cloudflare free plan at the moment.
I have noticed some very high traffic peaks which overload my system services (mysql, nameserver or spamd, most of the time it’s the mysql) with OS Out of Memory event and it goes down.
I have investigated the logs and it seems that there is a Python/aiohttp script coming from different IPs which is flooding my wordpress with requests for existing and not existing pages.
Does CF detect and stop such traffic?
Is it possible that some traffic to my site does not go trough CF?
Can you advice how can i protect from such scripts in general?