How to stop running out of ephemeral ports and start to love long-lived connections
February 02, 2022 9:53AM
Often programmers have assumptions that turn out, to their surprise, to be invalid. From my experience this happens a lot. Every API, technology or system can be abused beyond its limits and break in a miserable way...
Continue reading »
Extending Cloudflare’s Zero Trust platform to support UDP and Internal DNS
December 08, 2021 1:59PM
Last year, we launched a new feature which empowered users to begin building a private network on Cloudflare. Today, we’re excited to announce even more features which make your Zero Trust migration easier than ever....
Everything you ever wanted to know about UDP sockets but were afraid to ask, part 1
November 25, 2021 5:27PM
Historically Cloudflare's core competency was operating an HTTP reverse proxy. We've spent significant effort optimizing traditional HTTP/1.1 and HTTP/2 servers running on top of TCP. Recently though, we started operating big scale stateful UDP services....
Cloudflare blocks an almost 2 Tbps multi-vector DDoS attack
November 13, 2021 2:33PM
Earlier this week, Cloudflare automatically detected and mitigated a DDoS attack that peaked just below 2 Tbps — the largest we’ve seen to date....
Update on recent VoIP attacks: What should I do if I’m attacked?
October 07, 2021 3:20AM
Because of the sustained attacks we are observing, we are sharing details on recent attack patterns, what steps they should take before an attack, and what to do after an attack has taken place....
September 18, 2020 12:00PM
Raking the floods: my intern project using eBPF
SYN-cookies help mitigating SYN-floods for TCP, but how can we protect services from similar attacks that use UDP? We designed an algorithm and a library to fill this gap, and it’s open source!...