Application Security

Learn more about the tools Cloudflare offers to protect your website against malicious traffic and bad actors.

Start path

1. Account security

   Make sure your zone’s basics are configured properly.

   Start module

   Contains 4 units

   1. Set-up 2FA
   2. Add and manage other members
   3. Review active sessions
   4. Review audit logs

2. Default traffic security

   As soon as you onboard your domain to Cloudflare, you are automatically protected. This module reviews what those protections are and why they are critical.

   Start module

   Contains 6 units

   1. DDoS Protection
   2. Security level
   3. Browser Integrity
   4. DNSSEC
   5. SSL / TLS
   6. Mutual TLS (mTLS)

3. Web Application Firewall

   Cloudflare’s Web Application Firewall (WAF) is used to protect websites from a wide variety of attack vectors. It analyzes characteristics from each request and takes action based on your domain configuration. In the next module, we will review Rate Limiting which is another product used to protect against potentially more sophisticated volumetric attacks.

   Start module

   Contains 2 units

   1. Managed Rules
   2. Custom Rules

4. Rate Limiting

   Start module

   Contains 3 units

   1. Features
   2. Use cases
   3. Configurations

5. Lists

   Start module

   Contains 3 units

   1. Features
   2. Use cases
   3. Configurations

6. Security Center

   Start module

   Contains 2 units

   1. Security Insights
   2. Brand Protection