Current state of fly.io DDOS protection

I see a lot of older threads about DDOS protection for fly.io (e.g. DDoS and Throttling and DDoS protection for fly app - #7 by jessie)

I would be very interested to know (as of July 2024) how much DDOS protection is built in to fly.io’s architecture and how much value one would add by putting a fly.io app behind (for example) CloudFlare?

The situation is the same, they have DDoS protection at the infrastructure level. What’s your concern or problems you’ve encountered regarding DDoS?

As to value of Cloudflare fronting your fly app, that depends on various factors. Which of the many Cloudflare products/services are you referring to? They have services zero trust and network related services. The various applications services give you things like CDN but that wouldn’t benefit you if you have zero or very few cacheable content/assets. I’d say the DDoS protection should be able to give you close to the same as what fly.io say they do. There’s WAF which provides different level of protection and configuration rules based on the plan you choose.

2 Likes

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.