How to protect your business from DDoS attack by Cloudflare WAF
There are a lot of way to protect from DDOS. From special devices as CISCO ASR 9000. Personally I many times faced to bandwich 40 Gbps/s, but max measured in history was 250 Gbps/s.
![](/CloudflareWAF/Network-layer-ddos-incapsula.png)
Great and low-cost tools for prevent DDoS is Cloudflare Web Application Firewall (WAF), I use it in many times and below I show some screen from my last operation to surviving internet business. But firstly, without money this protector not working, any comprehension function start from $20/month - https://www.cloudflare.com/plans/.
After you login you can use top menu or click to your site.
![](/CloudflareWAF/DDOS-1_1.png)
On the top menu you an tune notification and set URL page you want to see instead white page.
![](/CloudflareWAF/DDOS-2_1.png)
![](/CloudflareWAF/DDOS-3_1.png)
![](/CloudflareWAF/DDOS-4_1.png)
But main menu will be opened if you click on your site name on the left. First tab is bandwidth of attack.
![](/CloudflareWAF/DDOS-5_1.png)
In this page also present setting of custom error page I mention early.
![](/CloudflareWAF/DDOS-6_1.png)
On the DNS tab you can see how Cloudflare shadow your own DNS definition and redirect user request to Cloudflare.
![](/CloudflareWAF/DDOS-7_1.png)
On the analytics tab you can see how many request you receive by countries.
![](/CloudflareWAF/DDOS-8_1.png)
Very useful is security wizard, it show a lot of options to protect site.
![](/CloudflareWAF/DDOS-9_1.png)
![](/CloudflareWAF/DDOS-10_1.png)
![](/CloudflareWAF/DDOS-11_1.png)
![](/CloudflareWAF/DDOS-12_1.png)
Also from this wizard you can jump to tune SSL and full security mode (ssl/tsl tab). In this case all inet traffic will be protected except internal traffic inside Cloudflare.
![](/CloudflareWAF/DDOS-13_1.png)
In SSL tab you can generate certificate to upload it to your server.
![](/CloudflareWAF/DDOS-27_1.png)
![](/CloudflareWAF/DDOS-28_1.png)
Next tab is Firewall, maybe this is main point for site protection.
![](/CloudflareWAF/DDOS-14_1.png)
In this tab you can see various statistics from where (country, IP, AS) you have attack to your site.
![](/CloudflareWAF/DDOS-15_1.png)
In this tab you can set up to 20 rules, but 4=5 usually is enough.
![](/CloudflareWAF/DDOS-16_1.png)
because all rules are composite.
![](/CloudflareWAF/DDOS-17_1.png)
![](/CloudflareWAF/DDOS-18_1.png)
Also firewall has about 20 rules to protect site from XSS, SQL injection and other type of attack.
![](/CloudflareWAF/DDOS-19_1.png)
![](/CloudflareWAF/DDOS-20_1.png)
![](/CloudflareWAF/DDOS-21_1.png)
![](/CloudflareWAF/DDOS-22_1.png)
Cloudwlare WAF also has own casher like Redis or Nginx.
![](/CloudflareWAF/DDOS-23_1.png)
And last important part of WAF is various options of network protection.
![](/CloudflareWAF/DDOS-24_1.png)
![](/CloudflareWAF/DDOS-25_1.png)
![](/CloudflareWAF/DDOS-26_1.png)
![](http://forum.vb-net.com/GetTopicCount.png?id=a3290578-9c4b-4bf0-ba99-b76da22df8ee)
<SITEMAP> <MVC> <ASP> <NET> <DATA> <KIOSK> <FLEX> <SQL> <NOTES> <LINUX> <MONO> <FREEWARE> <DOCS> <ENG> <CHAT ME> <ABOUT ME> < THANKS ME> |