Preface

With the official completion of the ten-part series of cloudflare tutorials (these ten parts are equivalent to the main series, if there are more in the future, they can only be regarded as extra-partners, and it does not affect the fact that there are only ten parts in the main series~), I think I should open a separate summary post for cloudflare: including the series of tutorials and previous practical articles on various cloudflare functions into a learning map, so that everyone can see the cloudflare-related content more clearly (cloudflare tags can also be quickly classified, but the logic cannot be intuitively reflected). This is also my blog, in addition to the site map, the first learning map sorted out for a certain knowledge system that I think is important.

Cloudflare Tutorial Series

The cloudflare series of tutorials are based on my daily usage experience and are written for the cloudflare overall solution and the important functional modules in the solution. They are tutorials in the form of theory + practice. They are divided into the "Foundation Building" trilogy (mainly introducing the cloudflare overall solution and many important and basic concepts involved), the "Golden Elixir" trilogy (mainly introducing the three functions of WAF, DDoS protection and Cache Rules, which are the three most commonly used basic sets for website building), the "Nascent Soul" trilogy (mainly introducing the three functions of worker, R2 and Zero Trust, which are considered to be cloudflare's more advanced skills) and the final chapter (mainly introducing the various redirections supported by cloudflare).

• Cloudflare Tutorial (Part 1): Introduction to Cloudflare and its Benefits for Individual Website Owners
  The first part of the cloudflare series of tutorials, part of the "foundation building" trilogy.
• Cloudflare Tutorial (Part 2): Introduction to the Functions of Each Technical Node in the Overall CF Solution Traffic Sequence
  The second part of the cloudflare series of tutorials, the second of the "foundation building" trilogy.
• Cloudflare Tutorial (Part 3): How to Access Cloudflare's Edge Network and Choose the Appropriate Origin Connection Method The third part of the cloudflare series of tutorials, the third part of the "foundation building" trilogy, phase one has been completed.
• Cloudflare Tutorial (Part 4): Introduction to CF WAF Features and Detailed Configuration Tutorial
  The fourth part of the cloudflare series of tutorials, part of the "Golden Elixir" trilogy.
• Cloudflare Tutorial (Part 5): Introduction to DDoS Attacks and CF DDoS Protection Configuration Tutorial
  The fifth part of the cloudflare series of tutorials, the second of the "Golden Elixir" trilogy.
• Cloudflare Tutorial (Part 6): Introduction and Detailed Configuration Tutorial for CF Cache Rules The sixth part of the cloudflare series of tutorials, the third part of the "Golden Elixir" trilogy, phase 2 is completed.
• Cloudflare Tutorial (Part 7): Introduction to CF Worker Feature and Practical Demonstration, Verification, and Research on Related Technical Principles of Implementing a "Budget APO for WordPress" Based on Workers to Accelerate Website Access
  The seventh part of the cloudflare series of tutorials, part one of the "Yuanying" trilogy.
• Cloudflare Tutorial (Part 8): Introduction to CF R2 Features and Detailed Tutorial on Building an Image Hosting Platform Based on R2
  The eighth part of the cloudflare series of tutorials, the second of the "Yuanying" trilogy.
• Cloudflare Tutorial (Part 9): Introduction to Common Zero Trust Features and Usage in Multiple Scenarios
  The ninth part of the cloudflare series of tutorials, the third part of the "Yuanying" trilogy, stage three is completed.
• Cloudflare Tutorial (Ten) Final Chapter: Redirection Function Introduction and Multi-Scenario Configuration Tutorial
  The tenth part of the cloudflare series tutorial, the extra chapter, and the final chapter.
• This section discusses the core concepts and practices of accelerating website access using Cloudflare CDN, focusing on the commonly used terms "custom IP," "optimized IP," and "optimized domain."” Although this article does not belong to the series of tutorials, it can be regarded as a summary of the series of tutorials from a higher perspective.

Cloudflare practical summary

The following section is a practical application using one or more functions of Cloudflare, which can also serve as a practical supplement to some functions in the Cloudflare series of tutorials.

• Solve the problem of having a public IP address but lacking valid ports 80 and 443 by using Cloudflare's Origin Rules.
  In order to solve the problem that when using cloudflare to build a website in China and using the default public IP back to the source, the domain name is not registered, although there is a public IP, there are no 80 and 443 ports. However, this method is no longer recommended. Whether it is domestic home broadband or cloud hosting, it is too dangerous to use cloudflare public IP back to the source: if you still need to use public IP back to the source in China, you should honestly use the registered domain name and use domestic CDN.
• Using tunnel technology, even home broadband without a public IP address can quickly build a website using Cloudflare for free (recommended).
  This is the recommended way to build a website using domestic equipment (whether it is home broadband or cloud hosting). As long as the tunnel can be established stably, it is the safest way at present, and it does not require the source station to have a public IP.
• Achieve fast access to domestic websites from abroad by using domestically registered cloud servers and obtaining Cloudflare for free.
  This article was written earlier. In fact, it uses Tencent Cloud host as the origin of Cloudflare (using the public IP back to the source). It is no longer meaningful in China (using foreign cloud hosts is still valid), but it contains detailed steps to migrate the domain name hosted by Tencent Cloud to Cloudflare. Friends in need can refer to it.
• Use Cloudflare to create a secondary email account with your own domain suffix.
  Very useful. You can use a domain name hosted on cloudlfare to create an email address with your own domain name suffix. It is really a great tool for showing off, but you can only receive messages.
• Build a free personal-level business email using Cloudflare, Resend, and Gmail.
  The previous problem that the email with your own domain name suffix can only receive emails has been solved. Now you can also send emails. However, if it is a domestic email provider, there will be a reminder for sending on behalf of others, but there is no problem with entering the inbox.
• How to effectively use Cloudflare Warp to improve your website access speed (desktop version)
  It is no longer suitable for domestic home broadband users, but it still works well abroad.
• Deploy cloudflare warp on the home data center series cloud host to improve network access speed (Linux cli version)
  It is no longer suitable for domestic cloud hosts, but it still works well abroad.
• Build a new home for your www navigation page using GitHub and Cloudflare Pages.
  The most basic one is based on github and cloudflare pages, using html templates to host the most basic static pages for free.
• Use Hexo to build a static blog and deploy it to Cloudflare Pages
  The advanced version uses hexo to build and host a static blog for free based on github and cloudflare pages.
• Using rclone and cloudflare R2 to create a remote disaster recovery image hosting service for Chevereto
  For those who originally used chevereto to build their own image hosting, R2 can be used as the main image hosting that is truly online 24 hours a day, and chevereto can be used as a backup image hosting (part-time watermark tool).
• Using cloudflare tunnel to automatically take over the disaster recovery site when the main WordPress site fails
  Advanced techniques based on cloudflare tunnel can solve the weaknesses of "home data center": power outages and network disconnection, but this requires the cooperation of the cloud host.
• My first time being attacked by a DDoS attack! (This is a blog post about my first DDoS attack.), Secondary attack! Optimization of internal blog access process under the new circumstances, The stress test was a success! Thanks for your help, bro, it's working now!
  The DDoS attack trilogy can be regarded as a practical exercise of Cloudflare's DDoS protection function. However, in addition to Cloudflare's own protection function, it also requires the cooperation of relevant security solutions within the home data center. I will discuss this in a special article in the future.
• The new protocol "MASQUE" has arrived with a bang, and WARP is temporarily "fully revived"! WARP using the latest protocol is back!
• Solving the WordPress AJAX protection challenge: Using Cloudflare Tunnel to "distribute" normal website access traffic from attack traffic.
• Potential Risks of Building Websites with Cloudflare Tunnel: The Impact of Non-Standard Ports and SEO Optimization Guidelines Friends who use Cloudflare tunnel to build websites and are concerned about SEO need to pay attention to this.
• From QUIC to HTTP2: Building a more private and stable Cloudflare Tunnel solution This is the protocol used by Cloudflare Tunnel that I will recommend in the future.
• Building an efficient and secure random image API: A practical guide to Cloudflare Worker + R2 + KV Random image API solution based on cloudlfare worker+R2+KV.
• Optimizing website loading speed: Cloudflare Zaraz enables cloud loading and management of third-party scripts Remove third-party scripts from web pages and load and manage them on Cloudflare's edge network.
• Cloudflare Pro In-Depth Review: Is it worth upgrading from Free to Pro? Detailed Cloudflare Pro vs Free usage analysis
• Cloudflare APO Cache Failure Analysis: Causes and Solutions for CF-Cache-Status BYPASS
• Cloudflare Worker + KV: Building Cloud-Based Post Read Statistics for WordPress Finally I can delete the article browsing statistics plug-in
• “In-depth analysis of "API Shield": Building a more secure Cloudflare API protection system You no longer have to worry about your API being attacked by malicious access.
• Achieving Precise Cache Clearing with Cloudflare: Practical Guide to Cache-Tag and Prefix Methods Finally, I can say goodbye to the wasteful behavior of "clearing all cached contents" at every turn!
• Cloudflare Monitoring and Alerting Combination in Practice: Lightweight O&M Experience Through Health Checks + Event Alerting It is much more reliable than building your own uptime for monitoring.
• The Second Restructuring of the Blog Architecture: Service Migration and Active-Active Disaster Recovery Practices Triggered by VPS Relocation Finally realized the multi-active + automatic disaster recovery of WordPress site
• dnscrypt-proxy (v2.1.8) Multi-scenario configuration guide: from upstream deployment to downstream integration A case study of DNS upstream node deployment with cloudflare tunnel and "full closure" as the security guiding principle.
• The architecture and principle of "non-direct connection" self-built scientific nodes: the combined practice of sing-box and Cloudflare Self-built scientific solution with cloudflare as the transit.
• Using Cloudflare Worker to solve the comment synchronization problem in WordPress multi-active architecture In fact, I feel like I'm just messing around. Which personal blog would use dual active?
• A solution for implementing a WordPress multi-active architecture (simplified version) in a personal blog. The WordPress multi-active solution based on Cloudflare Tunnel is finally implemented.
• Integrating Cloudflare with WordPress Cache: A Practical Guide to the Super Page Cache Plugin Let WP users who use Cloudflare's free account also enjoy some APO benefits~.