We are about to begin a new project and I’m taking the lead in development. I thought about using WebSockets, however, I’m unsure how well they are protected, most of the information I found is related to them being available or general limits on the usage.
Given https://support.cloudflare.com/hc/en-us/articles/200169466-Using-Cloudflare-with-WebSockets it seems like there is a limit on the active connections, but doesn’t mention anything in regards to the DDoS protection.
I guess that the default protection against TCP/UDP Attacks is there, however, application protection need some sort of tunning for all different projects, what are our options in the event of a proxied attack or just a botnet attack that targets our WebSockets? With HTTP we can deploy new firewall rules but it seems like that’s not an option for WebSockets, a rate limit would be ideal.