Cloudflare
Reference documentation for using Cloudflare as a DNS provider, reverse proxy, Zero Trust gateway, and WAF.
What's covered
| Section | Topics |
|---|---|
| DNS Records | A, CNAME, MX, TXT records |
| Proxying | Orange-cloud vs grey-cloud, SSL modes |
| Tunnels Setup | cloudflared, tunnel creation |
| K8s Integration | Running cloudflared in Kubernetes |
| WAF | Managed rules, custom rules, rate limiting |
| Zero Trust | Access policies, identity providers |
Why Cloudflare?
- DDoS protection — absorbs volumetric attacks at the edge
- Global CDN — static assets cached at 300+ PoPs
- Zero Trust — replace VPN with identity-aware access
- Free tier — generous limits for DNS + proxy
Account structure
Account
└── Zone (domain: huynhthientung.com)
├── DNS records
├── Firewall rules
├── Tunnels
└── Access policies