back to article Cloudflare promises to tend not two, but 65,535 ports in a storm

Cloudflare made its name proxying traffic for web servers, on network ports 80 (HTTP) and 443 (HTTPS), as a defense against denial of service attacks and their ilk. On Thursday, the online security biz broadened its ambitions by extending its watch over the remaining possible TCP/IP network ports under IPv4. Cloudflare …

  1. Anonymice

    Trust

    The world's favourite MITM!

    Is there even a way to use a service like this without creating a gaping hole in security?

    1. Nate Amsden Silver badge

      Re: Trust

      keep it layer 4 and use encryption ?

  2. Chris Hills

    Why only IPv4?

    The internet is moving on, IPv4 is legacy.

    1. batfastad

      Re: Why only IPv4?

      Watch the vid... https://blog.cloudflare.com/spectrum/

      You get an IPv6 by default and a v4 address on request.

  3. Anonymous South African Coward Silver badge

    Bad idea

    Extra point of failure for internet services, especially for big sites. Should Cloudflare goes TITSUP* for whatever reason, a lot of sites may be inaccessible or open to attack.

    On the other hand, if Cloudflare uses best practice, and keeps Mr Murphy far and away, then it will work.

    But we have seen too much Fun Things Happening of late.

    *Total Inability To Support Usual Protection

    1. Voland's right hand Silver badge

      Re: Bad idea

      and keeps Mr Murphy far and away, then it will work.

      Not really. There are regular issues if you try to access the reg from the Deepest Darkest Eastern Europe. It mis-detects multiple connections coming from a single CGNAT IP address for a DDOS attack on a regular basis and starts asking stupid questions followed by failing the connection.

  4. Anonymous Coward
    Anonymous Coward

    Have they tried

    Turning it off and leaving it off?

  5. Kevin McMurtrie Silver badge

    For when you need to hide the C&C server too

    Let us not forget that CloudFlare profits from both sides of the war. This allows them to expand a certain large customer base beyond phishing sites and fake online stores.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019