do check out all Cloudflare tutorials for accelerating your website speed and enhancing security and reducing monthly hosting costs.
– cloudflare analytics Overview
Displays Cloudflare status it’s active or not your website.
security & cache level
Devomemtn mode status disabled or not.
– Analytics
You can check how much Cloudflare saved bandwidth if our website. By serving content from their CDNs across global locations.
cloudflare analytics tell, how much they served from thier servere out if whole traffic.
ideal should be 70%.
if page rule cache everything then 90%.
how much traffic is served by Cloudflare?
My case at beginning its caching 85% requests and saved a lot of bandwidth (upload/download size of the website). But I made changes in page rules exceed for 1 page from the cache that may reduced cached request.
Or Cloudflare team suggested me to enable cargo app which is paid versions.
Argo app on Cloudflare
enabling argo not alone helps. serving from nearest colocation of user.
Argo is priced at $5/domain monthly, plus $0.10 per GB of transfer from Cloudflare to your visitors
10GB=
it charges $0.10 for every GB. (includes cache & hits client>> Cloudflare and server to Cloudflare).
Billed monthly 1st one GB is free enabling for it charge $5.
what I was thought if Cloudflare caches 1 GB data daily in the free plan
Last Month
Total Bandwidth
45.34 GB
Cached Bandwidth
23.07 GB
Uncached Bandwidth
22.27 GB
45.34 GB
Cached Bandwidth
23.07 GB
Uncached Bandwidth
22.27 GB
response bandwidth
request bandwidth it would be 10% or 100% (if 100% it would be double).
23 GB cached is free, but if you enable Argo, your billing would be 23*.0.10= 14 dollars additional charge for the month.
look at here
What is bandwidth?
It’s a data limit in GB or TB for the month. How much download or upload. If your website is 1 MB then for every download you consume 1 MB of data.
If 1000 visit and 2000 page views for it would be 2GB for your site if you were not enabled browser caching.
– Cloudflare free dns vs premium dns
CF dns are faster it’s provides premium services.
if you want to hide your Ip address, then you have to use this.
DNS only options must enable for blogger sites. Becuase blogger always checks domain pointed IP address.
With this hacker cannot identify our server IP address. Becuase our website points Cloudflare IP address.
– Crypto
cloudflare SSL settings explained with letsencrypt
flexible: serves both http & htpps
full strict: it’s must when installed a origin SSL.
SSL version TLS 1.3
always online
HSTS header
other options out ther
Fixing mixed resources chrome, by default CF not cache all requests. so there will be mixed.
another rule at clouflare
Force rewrite SSL.
you can serve https without installing SSL on your server.but some complications like mixed content
http & https.
does cloudflare works with letsencrypt &other SSL
you can buy SSL from cloudflare too. and upload within CF dashboard.
letsencrypt works fine with cloudflare but renewals we have to disable cloudflare & renew letsencrypt SSL.
using cloudflare shared SSL at origin.
it relives headaches related to mixed content
and lifetime validity no expiration.
– Firewall
– cloudflare Speed options
Auto minify a
CSS, js, HTML option is there. (if you don’t minify resources at your server level you can enable this)
Rocket Loader:
its load’s js asynchrony, places in footer j loads after the content we can also optimize this at origin side aka oit website.
It may cause the decrease in Adsense earnings.
it adds rocket loader.js to your website.
it’s better idea to disable it & use wordpress plugins to manually to manage js files.
– Caching
Standard means cache every static file.
Ignore query string
no query string
by default standards will be applied.
Cloud flare caches only CSS, JS, images (static content from our website/origin server) but HTML not caches by Cloudflare by default. you can do this by page rules.
Browser cache TTL means browser caching or expires headers for it should be at least 8 days for google page speed score.
You canble devolpement miode ti disable cloudflare rules.
Cloudflare applied to pull policy other cdns like maxcdn; key cdns uses push policy.
– cloudflare Page Rules
3 pagerules for available for free plan.
redirect
cache everything
edge cache TTL
and more
– Network
HTTP2 protocol enabled by default for the free plan when you use SSL / HTTPS protocol.
you can check this by https://yourdomain.com/cdn-cgi/trace
you could see this
http=h2
– Traffic
Load balancing & Argo features available for paid customers
– Customize
– Apps
– Scrape Shield
you can enable hotlink prevention for your static content like images to reduce the load on your server.
Why I am using Cloudflare
- the main reason is DNS Servers since my domain registrar not provided.
- I need to manage the bunch of my client’s websites registered on various domain registrars.
- finally discovered it can proxy your traffic.
- cloudflare caching everything is useful for small websites that they never change it can be enabled by page rules.
- Default Cloudflare caches only static files you can notice HTML changes.
Cloudflare cache everything:
it caches all of your content, but if you have any changes made, you have to visit Cloudflare dashboard and purge the cache by page or everything.
This what I know about Cloudflare. May useful for beginners to save bandwidth and improve security. Beter organization.
Not this articles Not yet writes as well I will update soon.
Installing Cloudflare SSL at Host
clocuidlfare>. dshboard>>crypto>>
Gneral certifctes >> save certifctate adn key.
upload to server
edit host or server block
listen to port, and Cloudflare certificate path & restart the server.
changed the HTTP to https in WordPress dashboard.
SSLEngine on
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
ex:
listen 80;
listen 443;
SSLEngine on
SSLCertificateFile /etc/nginx/ssl/raazkumar.com.pem
SSLCertificateKeyFile /etc/nginx/ssl/raazkumar.com.key
SSLCertificateFile /etc/nginx/ssl/raazkumar.com.pem
SSLCertificateKeyFile /etc/nginx/ssl/raazkumar.com.key
only this works not any other configurations.
nano /etc/nginx/sites-enabled/theonlineking
server { listen 80;
listen 443;
SSLEngine on
SSLCertificateFile /etc/nginx/ssl/raazkumar.com.pem
SSLCertificateKeyFile /etc/nginx/ssl/raazkumar.com.key
root /var/www/html/raazkumar.com/;
server_name raazkumar.com www.raazkumar.com;
include /etc/nginx/conf.d/global.config;
}
nginx -s reload
[emerg] unknown directive “SSLEngine” in /etc/nginx/sites-enabled/theonlineking:6
unknown directive “SSLCertificateFile”
unknown directive “SSLCertificateKeyFile”
getting some errors with nginx 13.10 version so installed using let’s encrypt.
Pros:
Masking original server Ip.
blocking attacks (brute force) etc.
page rules to catch everything to server 80% requests from Cloudflare (huge server resources savings) //but the fact is it may negatively impact on SEO.
Cons:
High TTFB (routing from wrong country / continent). //free version
Cloudflare certificate not issued on the domain name // free version (google showing this an error)
Serves request from all data centres based on the cheapest cost not from the closer data centre.
you can check Cloudflare colo (co-location
http://www.example.com/cdn-cgi/trace
fl=35f151
h=website name
ip=183.82.177.26
ts=1531287601.418
visit_scheme=http
uag=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.99 Safari/537.36
colo=SIN // singapore airport codes
spdy=off
http=http/1.1
loc=IN visited from india
h=website name
ip=183.82.177.26
ts=1531287601.418
visit_scheme=http
uag=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.99 Safari/537.36
colo=SIN // singapore airport codes
spdy=off
http=http/1.1
loc=IN visited from india