CTO at a tech services company with 51-200 employees
Real User
Top 5
2023-12-13T11:54:34Z
Dec 13, 2023
Cloudflare DDoS mitigates DDoS attacks mostly by distributing the attacks through their network, which means many of their PoPs will hit your servers. When you have a huge DDoS attack, Cloudflare DDoS will stop the attack after some time. Until then, it will just register the DDoS attack through their network because they have a huge network, and then all those PoPs will hit your servers. Cloudflare DDoS has poor technical support.
Partenaire, CEO at a tech services company with 1-10 employees
Real User
2022-03-03T14:54:06Z
Mar 3, 2022
Cloudflare is similar to a toolbox. It's simple to handle the box, but it's a different story when it comes to handling the tools. The same is true for Amazon. That is true for all companies. The majority of them have it. They will sell you a toolbox, but you must know how to use it. Cloudflare isn't all bad. We have customers who are getting rid of Imperva because they can't find anyone who knows anything about it. Our customers no longer use Cloudflare because its service is subpar. There's another company, Sucuri, that has excellent customer support, but you don't buy it because you don't want to talk to customer support. Customer support is not something you want to purchase. You're supposed to buy something without requiring customer support, which is the main point. The same goes for Fortinet. While I am not familiar with the machine, it can cost a lot of money sometimes, $300,000 for a medium-sized business. Furthermore, you will require a full-time employee in your office who is knowledgeable. Dependent on the skill level today's resources can range from 80 to 150.
Director of Platform and Information Security at Brace Software
Real User
2021-03-15T16:46:09Z
Mar 15, 2021
The initial onboarding was causing us some confusion. Who's going to do what and what steps need to be taken? Once we got through it once, it became a no-brainer. At this point, I'm pretty happy with Cloudflare. Everything is straightforward once you've figured it out initially. It's just the very first day that can be a little confusing. I recently sent some feedback to the company. There are thousands of rules in their WAF product, and I just wish I could have better insight. Right now, it's very superficial. You turn a radio button on or off for their rules, but when there's troubleshooting going on, it's very hard to figure out what's causing the rules to get triggered. With each rule, there may be hundreds to thousands of rules underneath it that are enabling the blocking. Luckily for me, so far it hasn't occurred enough that it has required me to dig deep to figure out why or how to bypass it, but I could see this occurring a lot in a complex environment. It only happened to us three times, and I was always able to figure out a way to get through it.
Cloudflare One is a single-vendor Secure Access Service Edge (SASE) platform that enables Zero Trust security and any-to-any connectivity across enterprise applications, users, devices, and networks. Cloudflare One helps organizations simplify, modernize, and consolidate their IT architecture by converging security and networking services on our single global network and control plane.
Many organizations start by adopting our Security Service Edge (SSE) services — like ZTNA, SWG, CASB,...
Cloudflare DDoS mitigates DDoS attacks mostly by distributing the attacks through their network, which means many of their PoPs will hit your servers. When you have a huge DDoS attack, Cloudflare DDoS will stop the attack after some time. Until then, it will just register the DDoS attack through their network because they have a huge network, and then all those PoPs will hit your servers. Cloudflare DDoS has poor technical support.
The tool should provide on-premise versions. Currently, all versions are cloud-based.
The solution must improve support. The response time for support must be reduced.
Operating and tuning the product is difficult.
The onboarding process can be improved a little bit.
The free plan has limitations. For example, I can only set up three rules, and the application firewall is unavailable.
I would like them to include a VPN feature to provide a secure connection to the data center.
Cloudflare is similar to a toolbox. It's simple to handle the box, but it's a different story when it comes to handling the tools. The same is true for Amazon. That is true for all companies. The majority of them have it. They will sell you a toolbox, but you must know how to use it. Cloudflare isn't all bad. We have customers who are getting rid of Imperva because they can't find anyone who knows anything about it. Our customers no longer use Cloudflare because its service is subpar. There's another company, Sucuri, that has excellent customer support, but you don't buy it because you don't want to talk to customer support. Customer support is not something you want to purchase. You're supposed to buy something without requiring customer support, which is the main point. The same goes for Fortinet. While I am not familiar with the machine, it can cost a lot of money sometimes, $300,000 for a medium-sized business. Furthermore, you will require a full-time employee in your office who is knowledgeable. Dependent on the skill level today's resources can range from 80 to 150.
The initial onboarding was causing us some confusion. Who's going to do what and what steps need to be taken? Once we got through it once, it became a no-brainer. At this point, I'm pretty happy with Cloudflare. Everything is straightforward once you've figured it out initially. It's just the very first day that can be a little confusing. I recently sent some feedback to the company. There are thousands of rules in their WAF product, and I just wish I could have better insight. Right now, it's very superficial. You turn a radio button on or off for their rules, but when there's troubleshooting going on, it's very hard to figure out what's causing the rules to get triggered. With each rule, there may be hundreds to thousands of rules underneath it that are enabling the blocking. Luckily for me, so far it hasn't occurred enough that it has required me to dig deep to figure out why or how to bypass it, but I could see this occurring a lot in a complex environment. It only happened to us three times, and I was always able to figure out a way to get through it.