this post was submitted on 20 Nov 2025
5 points (100.0% liked)

Linux Prepper podcast

52 readers
3 users here now

See rules. Enjoy this experimental place to share content related to Linux Prepper podcast, which is also selfhosted to follow on the fediverse through Castopod as @linuxprepper@podcast.james.network

You may also use our discussion forum directly or join our chat on Matrix for Linux Prepper & Living Cartoon Company.

founded 2 weeks ago
MODERATORS
kiol@discuss.online
5
People using Cloudflare, are you still happy with it? Would you consider any self-hosted alternative? (discuss.online)
submitted 3 days ago by kiol@discuss.online to c/linuxprepperpodcast@discuss.online
6 comments fedilink hide all child comments
 

Genuine question, so please don't be mean to whoever responds. Better to learn than to judge.

Curious if people who are on Cloudflare are considering any selfhosted alternatives? If not, interested to hear what is a deal breaker in regards to using a service besides Cloudflare. I do hear a lot of praise for Cloudflare when facing DDOS, and always happy to learn more!

top 6 comments
sorted by: hot top controversial new old
[–] curbstickle@anarchist.nexus 2 points 2 days ago (1 children)

It depends. I have a vlan for work stuff thats connected to my office (site-to-site), and for some client and lab testing I have another VLAN that has a CF tunnel. For what I use it for (occasional tests and a demo of a concept for a client), its perfectly fine.

For my personal stuff, I don't need it/don't want to rely on it.

Pangolin on a VPS would be the most self-hosted alternative, but you're not really getting all the CF features there. Anubis is an example of a tool to protect from AI scraping, gatekeeper is an open source DDoS protection solution but meant for way more scale, DDoS Deflate is a shell script to help with the impact with dynamically blocking addresses, or HAProxy as a load balancer can be used as well.

I think for most folks though, getting DDoS'd would just mean stopping the public exposure for a while.

My issue with CF has nothing to do with its services, but about it being such a critical system to so many makes it a problem (much like people hosting too many things in AWS or Azure). As a service, CF works just fine.

[–] kiol@discuss.online 2 points 23 hours ago

Ah ha, I've noticed Anubis in the wild. Thank you for the project mentions!

[–] Bloefz@lemmy.world 4 points 2 days ago (1 children)

Something like Cloudflare can't really be self hosted. Their big point is being a huge cloud service that can absorb DDoSes for you.

[–] kiol@discuss.online 1 points 2 days ago* (last edited 2 days ago) (1 children)

Right, hence the topic: People using Cloudflare, are you still happy with it? Would you consider any self-hosted alternative? The DDoS protection is constantly mentioned, so wondering if something comparable could be implemented with a (more) self hosted service

[–] Bloefz@lemmy.world 3 points 2 days ago* (last edited 2 days ago)

Yeah I'm just saying there isn't really one. There's nothing to consider really at least for their web front-end which is their main service. I love self hosting and I don't use Cloudflare but if I had a public site prone to DDoS i'd have to.

You can't host that yourself because you can't get a connection capable of handling such amounts of traffic. Only a hyperscaler can.

However what you could do is have a script that checks whether they are up and if not to send traffic to your server directly. In doing that you expose its address though.

I don't use their tunnels either because they're pretty unsafe. I don't want people being able to access web services inside my network without authentication. I use a mesh VPN instead.

[–] ulterno@programming.dev 2 points 2 days ago

I would love to own a direct endpoint to the undersea fibre and a room full of ASICs.
Would happily provide DDoS protection if I could.