Cloudflare wants to make it cheaper and easier to protect against DDoS attacks

News
By published

Customers can now choose to be notified when their organization is hit with a DDoS attack

DDoS attack
(Image credit: FrameStockFootages / Shutterstock)

As network-layer DDoS attacks continue to increase, more businesses are adopting DDoS protection services such as Cloudflare's Magic Transit.

Magic Transit protects organizations' entire networks from DDoS attacks by placing Cloudflare's network in front of theirs and this functionality can be set to always on or on demand depending on a business' risk level. 

To make it easier to protect against DDoS attacks, the web infrastructure and website security company has added a new functionality to Magic Transit called flow-based monitoring. With flow-based monitoring enabled, Cloudflare can detect threats and notify its customers that they're under attack so that they can activate Magic Transit for protection.

Cloudflare advertises Magic Transit customers' IP prefixes to the internet with BGP in order to attract traffic to its network for DDoS protection. However, if an organization's traffic isn't routed through the company's network, by the time an attack is detected and Magic Transit is activated, the DDoS attack may have already caused impact to your business which is why Cloudflare now plans to use flow-based monitoring with on demand.

Flow-based monitoring

Flow-based monitoring solves the problem with on-demand by enabling Cloudflare to detect and notify businesses about attacks based on traffic flows from their data centers. 

Organizations will now be able to configure their routers to continuously send NetFlow or sFlow (coming soon) to Cloudflare so that the company can ingest flow data and analyze it for volumetric DDoS attacks. When an attack is detected, the company will automatically notify an organization by email, webhook and/or PagerDuty with information about the attack.

Businesses can also choose whether they'd like to activate IP advertisement with Magic Transit manually or automatically via the Cloudflare dashboard or API. Once Magic Transit is activated and an organization's traffic is flowing through Cloudflare, it will only receive clean traffic back to its network over GRE tunnels.

By using flow-based monitoring with Magic Transit on demand, organizations will receive peace of mind knowing they'll be protected when hackers try to launch DDoS attacks against their sites.

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Read more
An image of network security icons for a network encircling a digital blue earth.
Standing strong against hyper-volumetric DDoS attacks
An image of security icons for a network encircling a digital blue earth.
Best DDoS protection of 2025
Eu
Is your business ready for DORA? Cisco ThousandEyes outlines the "three pillars" everyone needs to have in place to be resilient
AI business data center
"It is literally driving our product development direction" - how Cisco is redefining networking security to better protect against cyberattacks and human error
A person standing in front of a rack of servers inside a data center
Is your business primed to respond to downtime?
DDoS Attack
World's largest DDoS attack blocked, Cloudflare claims
Latest in Pro
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Multiple H3C Magic routers hit by critical severity remote command injection, with no fix in sight
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
Windows 10
The six-step countdown to Windows 10 end of life
ai quantization
Shadow AI: the hidden risk of operational chaos
An abstract image of a lock against a digital background, denoting cybersecurity.
Critical security flaw in Next.js could spell big trouble for JavaScript users
Latest in News
Zotac Gaming RTX 5090 Graphics Card
Nvidia Blackwell stock woes are compounded by price hikes as more RTX 5090 GPUs soar in pricing, and I’m sick and tired of it all at this point
An Apple Music pink/pixellated poster advertising DJ with Apple Music
DJ with Apple Music lands, allowing subscribers to build and mix DJ sets directly from its +100 million-song catalog
The Meta Quest 3 and controllers on their charging station which is itself on a wooden desk next to a lamp
Forget Android XR, I've got my eyes on Vivo's new Meta Quest 3 competitor as it could be the most important VR headset of 2025
Samsung Galaxy S25 from the front
The Now Bar on Samsung One UI 7 is about to get a lot more useful – and could soon match Live Activities on iOS
Marvel Rivals
Marvel Rivals will get two new hero skins for Moon Knight and Black Panther this week meaning I'll now need to farm even more Units
Nvidia app
Tired of manually optimizing your games? Nvidia's new G-Assist could save you time
More about pro
Code Skull

This dangerous new ransomware is hitting Windows, ARM, ESXi systems
Bambu Lab H2D Vs X1C

I've been reviewing the hotly anticipated Bambu Lab H2D for a month, and it's the most versatile machine I've ever used
Windows 10

The six-step countdown to Windows 10 end of life
See more latest
Most Popular
Quordle on a smartphone held in a hand
Quordle hints and answers for Wednesday, March 26 (game #1157)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Wednesday, March 26 (game #388)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Wednesday, March 26 (game #654)
Nvidia app
Tired of manually optimizing your games? Nvidia's new G-Assist could save you time
Zotac Gaming RTX 5090 Graphics Card
Nvidia Blackwell stock woes are compounded by price hikes as more RTX 5090 GPUs soar in pricing, and I’m sick and tired of it all at this point
Demonstrators protesting against the arrest of the Mayor of Istanbul Ekrem Imamoglu block Atatürk Boulevard on March 22, 2025 in Ankara, Türkiye.
Turkey's social media ban has been lifted, but VPN usage is still high
An iPhone running iOS 18 on a purple and blue background
iOS 18.4 could launch soon with a major upgrade to your iPhone’s notifications
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
An Apple Music pink/pixellated poster advertising DJ with Apple Music
DJ with Apple Music lands, allowing subscribers to build and mix DJ sets directly from its +100 million-song catalog
The Meta Quest 3 and controllers on their charging station which is itself on a wooden desk next to a lamp
Forget Android XR, I've got my eyes on Vivo's new Meta Quest 3 competitor as it could be the most important VR headset of 2025