Physical firewall still recommended/necessary?


Stupid question time. Is a physical (Cisco) firewall even necessary or recommended with a WAF like Cloudflare? The only thing I can find on the topic is a 7 year old web forum post that says yes If I use Cloudflare, do need a firewall, too | Web Hosting Talk

Help a newbie out. Thanks.


Yes. Any kind of firewall. Not necessarily hardware. You’d need it to block attacks on lower layers. Don’t forget that CF is protecting your domain and the host it resolves to. Direct attacks against your IP adresses are still possible.

That’s an implicit deny rule for eaxample. 4.5 million connections against my IP network:


Most modern firewalls have their own WAF, but I for my self would deactivate this feature while using Cloudflare.

1 Like

That makes a lot of sense. Much thanks!

1 Like

This topic was automatically closed after 30 days. New replies are no longer allowed.