Secure against attacks
Review the differents actions you can take to secure your website against attacks.
When a subdomain is set to Proxied (also known as orange-clouded), Cloudflare proxying is active for that record will resolve to a Cloudflare IP.
Refer to Proxy status for more information.
If you are under attack and have this feature enabled during the attack, visitors will receive an interstitial page for about five seconds while the traffic is analyzed to make sure it is a legitimate human visitor. The vast majority of Layer 7 attack scripts are defeated by IUAM and can be honed via Page Rules.
Refer to I'm Under Attack Mode for more information.
An ACL refers to rules that are applied to port numbers or IP address that are available on a host permitting use of the service. When you only allow Cloudflare IPs, you eliminate threats attempting to attack your origin IP range.
Refer to Cloudflare IP Ranges ↗ for more information.
If your origin is still being attacked, consider moving your Origin IPs and updating your Cloudflare DNS records.
Refer to Prevent DDoS attacks for detailed guidance.
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Products
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark