CloudFlare use?
  • 2015/9/12 16:47

  • Dante7237

  • Friend of XOOPS

  • Posts: 294

  • Since: 2008/5/28

Recently fired Arvixe and got rid of EIG for good.
My new host is A2, and everything is working like clockwork.
My question is, who here has experience using CloudFlare services with XOOPS?

Is there anything I need to think about before I give it a try other than the obvious backup everything including momma's car?

I personally am aware of no issues, but I was thinking Mamba may have experience with this.


Re: CloudFlare use?
  • 2015/9/13 0:38

  • Mamba

  • Moderator

  • Posts: 11264

  • Since: 2004/4/23

My question is, who here has experience using CloudFlare services with XOOPS?

I don't, but from the description it seems it should be pretty much straight forward service, and XOOPS should have no issues with it.
Use 2.5.10 | Docs | Modules | Bugs

Re: CloudFlare use?
  • 2015/9/13 3:09

  • Dante7237

  • Friend of XOOPS

  • Posts: 294

  • Since: 2008/5/28

Ok. I'll report back any issues I encounter.

Re: CloudFlare use?
  • 2015/9/15 16:05

  • xoobaru

  • Just can't stay away

  • Posts: 494

  • Since: 2010/12/2

What do you hope to get by using CloudFlare, security (DDOS protection), or a speed advantage?

If for speed, you forfeit ownership of data or scripts cached in the cloud for the privelege of faster execution.

You could gain speed advantage comparable to Cloudflare, and maintain ownership of your by using NGINX vs Apache hosting (hint, CloudFlare uses NGINX as do all major data intensive services). This is because Apaches has to allocate significant CPU processing power to service htaccess, which slows down the server. NGINX does everything htaccess does from the config so is much faster.
NGINX with a RAMdisk cache will get you every speed advantage.

If for security, it is because CF servers caching your site are taking the DDOS hit, but can slow the number of connection requests in the flood with the CloudFlare captcha..."Just One More Step".

Users visiting your site with anonymizing browser such as TorBrowser
will face serious harrassment from CF Captcha, which seeks to de-anonymize them by forcing them to use Javascript to complete the captcha (which also allows them to detect your real IP).

I personally, and eternally choose to retain data ownership, and will have nothing to do with cloud anything, much less CloudFlare. If you use a shared host with which you need the flexibility of Apache htaccess, then your options are limited to use CF if you really need the speed or security advantage.

BTW CF is now a standard option set in C-Panel if that makes life any easier.

Re: CloudFlare use?
  • 2015/9/16 2:10

  • Dante7237

  • Friend of XOOPS

  • Posts: 294

  • Since: 2008/5/28

xoobaru Thanks for the reply.
I was looking at performance.
Got a reseller's account and I've decided not to do the CF. I have system resources that need re-arranged. Much is reserved for future accounts. I have plans on maybe 2 more domains so the rest of the system should be able to be re-allocated to "my" account.
We'll see how it works out.

I agree with your Cloud assessment. Handing site security over to strangers has never been something I felt good about.
The downsides are obvious, but the thought of multiplying my capacity is tempting.

I block TOR users offhand. I have never had any honest traffic from a TOR node.


Who's Online

34 user(s) are online (20 user(s) are browsing Support Forums)

Members: 0

Guests: 34



Goal: $100.00
Due Date: Oct 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits