My Laravel API is behind cloudflare, is it possible to mitigate all DDOS attacks on the pro plan?
In its current state, the Laravel API running on nginx can be downed pretty easily by flooding it with requests. Cloudflare doesn't seem to be blocking these attacks on the fly, it thinks it is genuine traffic.
11 Replies
I would start by setting up a rate limit
Rate limiting has been set up
what rules do you have on?
what is your site level
does cloudflare respect the responding headers?
ping if you respond to me : D
@Alf
What about your dns setup?
If it's not at full strict set it to that
Also is your rate limiting rule appropriate for the average requests coming in?
why did you do that so weird...
just do
so much better