vb.org Archive
Page 1 of 3 1 23
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Community Lounge (https://vborg.vbsupport.ru/forumdisplay.php?f=13)
-   -   Cloud Flare - Block spam, proxies, cyber attacks, and most unwanted cyber bots (https://vborg.vbsupport.ru/showthread.php?t=259173)

OldSchoolDSL 02-20-2011 05:42 PM
Cloud Flare - Block spam, proxies, cyber attacks, and most unwanted cyber bots
 
I am not 100% sure where I should post something, when I want to share something with this community. Or if even sharing such information is allowed. If this is in the wrong forum or sharing resource information isn't idea here... Please let me know for future reference's.

I recently have discovered a free services (they have a paid version too), which has stop almost all forum spam, blocked almost all proxies, blocked unwanted cyber bots, and even help block someone from cyber attacking my community.

So I thought I'd share the link.

http://www.cloudflare.com

They basically route all your traffic through their DNS Servers. And it doesn't block valid users out right... If a valid user does something that could be thought of as "high risk", they are brought to a challenge page (most to confirm they are human). They require you to make 1 small template edit.

http://www.cloudflare.com/wiki/VBulletin_3.8.4

They say this edit applies to vBulletin 3.8.4, but I found it useful on my copy on 4.1.1 also.

Not sure if I'm doing a good job on explaining what they do. But they have a few videos for others to see and learn what they offer.

Paul M 02-20-2011 08:13 PM
Basically they act like a giant proxy server, your dns [for your site] points to thier servers, so a connecting client connects to them, and they then connect to your site. Thats why you need to make the edits to class core, without them all traffic to your site would appear to originate from their servers, so they pass on the original ip as an http variable.

OldSchoolDSL 02-20-2011 08:36 PM
Quote:
Originally Posted by Paul M (Post 2164708)
Basically they act like a giant proxy server, your dns [for your site] points to thier servers, so a connecting client connects to them, and they then connect to your site. Thats why you need to make the edits to class core, without them all traffic to your site would appear to originate from their servers, so they pass on the original ip as an http variable.
Thank you for explaining this a little better then maybe I did.

Their modification did seem to make my site a little fast though.

I also find your modification (Proxy to Real IP Conversion) helps in so many ways.

^
Cloud Flare IP > Proxy IP > Real IP

8thos 07-25-2011 02:34 AM
URLJET has this on cpanel by default. I didn't know about it until now. They started last month. I will activate it today.

BirdOPrey5 07-25-2011 12:34 PM
If I blocked proxies I'd lose half my traffic...

Sage Knight 07-25-2011 12:39 PM
Not a good option if most of your members are from Asia.

8thos 07-25-2011 06:41 PM
It's not blocking my members at all and most of my site's Asians are South-East Asians from North America or the UK so I'm good to go.

Sage Knight 07-26-2011 11:25 AM
Quote:
Originally Posted by Octavius. (Post 2224885)
It's not blocking my members at all and most of my site's Asians are South-East Asians from North America or the UK so I'm good to go.
It doesn't block but that message can get annoying. I know I get annoyed.

8thos 07-26-2011 11:38 AM
I can't even get this working right...

KevinL 07-26-2011 03:29 PM
There really should be no real setup once you click that button in cpanel.

What are some issues you are having?

TheLastSuperman 07-26-2011 03:34 PM
Quote:
Originally Posted by Octavius. (Post 2225147)
I can't even get this working right...
KevinL is right, see below. furthermore if your hosted w/ URLJet your not required to edit the files. mod_cloudflare handles that for you since they use litespeed and have it passing the originating ip ;). Not to mention some things like IP's from your who's online and other will simply disappear if you make those edits :erm:.

So as Kevin said, enable it via cPanel and let it fly!

Quote:
Originally Posted by KevinL (Post 2225227)
There really should be no real setup once you click that button in cpanel.

What are some issues you are having?

8thos 07-26-2011 05:52 PM
Quote:
Originally Posted by KevinL (Post 2225227)
There really should be no real setup once you click that button in cpanel.

What are some issues you are having?
Quote:
Originally Posted by TheLastSuperman (Post 2225232)
KevinL is right, see below. furthermore if your hosted w/ URLJet your not required to edit the files. mod_cloudflare handles that for you since they use litespeed and have it passing the originating ip ;). Not to mention some things like IP's from your who's online and other will simply disappear if you make those edits :erm:.

So as Kevin said, enable it via cPanel and let it fly!
My host says it reroutes traffic through www.the8thlegion.com but my most of my urls are http://the8thlegion.com

Tried to fix it last night and it screwed up my site so I'm asking my host to look into it.

MrHorror 07-26-2011 10:34 PM
I've said it once and I'll say it again, the vbulletin question and answer option kills 99.5% of spammers. This is because most spammers are bots. Not real people. So every now and then, you might get the occasional spammer. But atleast they'll be human.

KevinL 07-26-2011 11:20 PM
Quote:
Originally Posted by Octavius. (Post 2225287)
My host says it reroutes traffic through www.the8thlegion.com but my most of my urls are http://the8thlegion.com

Tried to fix it last night and it screwed up my site so I'm asking my host to look into it.
Yep. You would have to add a 301 redirect from non-www --> www

You can put this in your htaccess:

Code:
RewriteCond %{HTTP_HOST} ^the8thlegion.com$ [NC]
RewriteCond %{SERVER_PORT} ^80$
RewriteRule ^(.*)$ http://www.the8thlegion.com/$1 [R=301,L]
That should route it correctly for you.

8thos 07-27-2011 05:19 AM
Quote:
Originally Posted by MrHorror (Post 2225345)
I've said it once and I'll say it again, the vbulletin question and answer option kills 99.5% of spammers. This is because most spammers are bots. Not real people. So every now and then, you might get the occasional spammer. But atleast they'll be human.
I've been saying that too. I have Q&A set up on my site. No spam problems really. I get human spammers but they are rare.

Cloud Flare isn't awesome to me because of spam-prevention though. It's awesome because it's a Content Delivery Network. My host says it has more reach than maxCDN which is what vbSEO uses. I need CloudFlare because for one, I don't live near my server and two, my site won't even load on my moderator's cell phone because she lives overseas. Having a CDN means having a faster site and a better search ranking. My site's ranking went down when my site slowed down. I need this and some other optimization besides mods like dboptimize lite to increase the speed of my site.

--------------- Added [DATE]1311748181[/DATE] at [TIME]1311748181[/TIME] ---------------

Quote:
Originally Posted by KevinL (Post 2225363)
Yep. You would have to add a 301 redirect from non-www --> www

You can put this in your htaccess:

Code:
RewriteCond %{HTTP_HOST} ^the8thlegion.com$ [NC]
RewriteCond %{SERVER_PORT} ^80$
RewriteRule ^(.*)$ http://www.the8thlegion.com/$1 [R=301,L]
That should route it correctly for you.
They fixed it awhile ago thank you! I see your host has softalicious. I just now discovered that on my server the other day. I'm mad no one told me. Do you ever get requests from your customers about integration with the free scripts within softalicious? Integration as in, dual-login. Single-sign on kinda deal.

07-27-2011 04:42 PM
Quote:
Originally Posted by Sage Knight (Post 2224763)
Not a good option if most of your members are from Asia.
I actually work for CloudFlare and thought I would jump in. We have a number of datacenters in Asia & things should be fine for most site visitors. Are you having issues with the challenge page/captcha?

BirdOPrey5 07-27-2011 06:00 PM
Quote:
Originally Posted by damoncloudflare (Post 2225665)
I actually work for CloudFlare and thought I would jump in. We have a number of datacenters in Asia & things should be fine for most site visitors. Are you having issues with the challenge page/captcha?
Cloudflare has a challenge? :confused:

Xencored 07-28-2011 03:53 PM
Quote:
Originally Posted by BirdOPrey5 (Post 2225698)
Cloudflare has a challenge? :confused:
Customize Challenge Page

Customize the challenge page. You can customize colors, copy and other elements of the page. Changes may take up to 30 minutes to propagate across the entire CloudFlare system.

8thos 07-30-2011 07:13 PM
Rocket Loader screwed up my site. I know it's in Beta. Everything else seems to be okay so far.

8thos 08-02-2011 01:18 PM
Purging cache and going into development mode doesn't work no matter what order I do it in. I need to see changes right away. I even wait minutes, in some cases hours and I still do not see immediate change. It also happens after I deactivate the service. This bug almost makes me want to stop this service.

BirdOPrey5 08-02-2011 01:24 PM
Quote:
Originally Posted by Octavius. (Post 2228164)
Purging cache and going into development mode doesn't work no matter what order I do it in. I need to see changes right away. I even wait minutes, in some cases hours and I still do not see immediate change. It also happens after I deactivate the service. This bug almost makes me want to stop this service.
Are you talking about Cloudflare or RocketLoader? :confused:

8thos 08-02-2011 02:34 PM
The whole service itself. Rocketloader is inside Cloudflare but I have that turned off due to not being able to click through menu links on my site or quick-editing posts.

Sage Knight 08-02-2011 05:09 PM
Quote:
Originally Posted by damoncloudflare (Post 2225665)
I actually work for CloudFlare and thought I would jump in. We have a number of datacenters in Asia & things should be fine for most site visitors. Are you having issues with the challenge page/captcha?
Yes, most of my members used to see the page and used to experience an issue with the captcha so I removed it, as my target market was mostly kids and teenagers (they found it a nuisance as they didn't "get" the captcha and also as studies indicate have really low attention spans). even though I can white list their IP but random guests would be an issue as I didn't want to lose any potential members. I'm aware it can speed up things many times fold and it also makes the site safer. No doubt the advantages of having Cloudflare > than not having Cloudflare.

08-02-2011 09:11 PM
Quote:
Originally Posted by Octavius. (Post 2226971)
Rocket Loader screwed up my site. I know it's in Beta. Everything else seems to be okay so far.
This is a beta feature that can potentially break some Javascript. If you see any issues with Rocket Loader after turning on, turn it off and report the bug to us.

--------------- Added [DATE]1312323170[/DATE] at [TIME]1312323170[/TIME] ---------------

Quote:
Originally Posted by Sage Knight (Post 2228261)
Yes, most of my members used to see the page and used to experience an issue with the captcha so I removed it, as my target market was mostly kids and teenagers (they found it a nuisance as they didn't "get" the captcha and also as studies indicate have really low attention spans). even though I can white list their IP but random guests would be an issue as I didn't want to lose any potential members. I'm aware it can speed up things many times fold and it also makes the site safer. No doubt the advantages of having Cloudflare > than not having Cloudflare.
You can also turn your security settings to "Esstentially Off" by going to:
Settings->CloudFlare settings->Basic Security Level->Desired Level.

Essentially Off will only block the worst of the worst.

--------------- Added [DATE]1312323243[/DATE] at [TIME]1312323243[/TIME] ---------------

Quote:
Originally Posted by Octavius. (Post 2228180)
The whole service itself. Rocketloader is inside Cloudflare but I have that turned off due to not being able to click through menu links on my site or quick-editing posts.
Is Development Mode working now? Rocket Loader isn't directly tied into Development Mode.

8thos 08-03-2011 01:51 AM
Quote:
Originally Posted by damoncloudflare (Post 2228366)
This is a beta feature that can potentially break some Javascript. If you see any issues with Rocket Loader after turning on, turn it off and report the bug to us.

Is Development Mode working now? Rocket Loader isn't directly tied into Development Mode.
I reported Rocketload and something else but I'll check development mode now. One of the techs wants me to do a traceroute.

08-03-2011 02:04 AM
Quote:
Originally Posted by Octavius. (Post 2228479)
I reported Rocketload and something else but I'll check development mode now. One of the techs wants me to do a traceroute.
That was me. I just want to see the datacenter you're hitting so I can make sure the rules that allow Development Mode and Purge cache to work are actually working.

8thos 08-03-2011 02:16 AM
Quote:
Originally Posted by damoncloudflare (Post 2228481)
That was me. I just want to see the datacenter you're hitting so I can make sure the rules that allow Development Mode and Purge cache to work are actually working.
My bad man I didn't mean to forget your name. I work 7 days a week/10 hours a day + work on my site man I'm slipping. I will try when I have some time free I really appreciated the swift response.

08-03-2011 02:52 AM
Quote:
Originally Posted by Octavius. (Post 2228486)
My bad man I didn't mean to forget your name. I work 7 days a week/10 days a week + work on my site man I'm slipping. I will try when I have some time free I really appreciated the swift response.
No worries. I'm in the same boat with work hours....send it to us when you have time so I can check it out.

8thos 08-03-2011 05:56 AM
You have most of the same features as a mod called vbSupercharged in your free cdn service and in your RocketLoader Beta. I noticed I get the same results with those mods when I activate or deactivate parts of it.

08-04-2011 08:33 PM
Quote:
Originally Posted by Octavius. (Post 2228548)
You have most of the same features as a mod called vbSupercharged in your free cdn service and in your RocketLoader Beta. I noticed I get the same results with those mods when I activate or deactivate parts of it.
Is that mod specific to VB only? Our beta features, even if they can cause some issues at times, actually work regardless of platform.

thecore762 08-08-2011 07:55 AM
8th, you still using cloudflare? I am looking to use it too..
How you like it so far?

8thos 08-08-2011 10:02 PM
Quote:
Originally Posted by thecore762 (Post 2230811)
8th, you still using cloudflare? I am looking to use it too..
How you like it so far?
Yes I am and I learned I have to wait at least 10 minutes after turning development mode on for it to actually work. But it's great for my overseas members because the site loads much faster for em and even loads faster for peeps stateside as well. I haven't heard any member complaints either so I guess I'll ignore the webpagetest.org results for now. It's also more accurate at tracking website statistics than whenever you install google analytics into your forum.

So if you have something you like to install like apture, vigilinks or google analytics, webmaster tools etc, best do it through CloudFlare.

Hey damon will CloudFlare consider adding Tynt?

08-12-2011 06:28 PM
Quote:
Originally Posted by Octavius. (Post 2231054)
Yes I am and I learned I have to wait at least 10 minutes after turning development mode on for it to actually work. But it's great for my overseas members because the site loads much faster for em and even loads faster for peeps stateside as well. I haven't heard any member complaints either so I guess I'll ignore the webpagetest.org results for now. It's also more accurate at tracking website statistics than whenever you install google analytics into your forum.

So if you have something you like to install like apture, vigilinks or google analytics, webmaster tools etc, best do it through CloudFlare.

Hey damon will CloudFlare consider adding Tynt?
Sorry about the delay in responding...I just got back from HostingCon.

Tynt seems like a fairly cool service. Have you recommended to Tynt that they should look at becoming an app partner?

8thos 08-12-2011 07:15 PM
Nah.

08-12-2011 09:22 PM
Alright, I'll mention it to our apps' guy.

Brakkish 08-12-2011 09:45 PM
I tried Cloudflare for a week. After receiving feedback from our users and weighing the cons and pros it provides, we elected it wasn't for us.

Secondary problems were encountered when trying to cancel the service. Easy to sign up (easy to find buttons), but had a somewhat difficult time cancelling the service. (no buttons at the time to uninstall/cancel service.) Which led me searching through emails to find a point of contact, then waiting for a response, meanwhile my community was experiencing some residual hiccups from the service as I continued communications with a tech via emails over the next 36hrs to finalize cancellation.

To their defense, the service was in beta at the time. Perhaps the ability to simply cancel the service on the user's end has been added or at least somewhat streamlined by this time. (however I was under the impression this wasn't in their immediate lineup; making it easy for users to cancel isn't exactly good business sense right? *nudge - poke*

08-12-2011 09:52 PM
When did you try the service? We've made a ton of changes over the past few months that have made things much more stable than they were during our beta period last year.

"(however I was under the impression this wasn't in their immediate lineup; making it easy for users to cancel isn't exactly good business sense right? *nudge - poke*"
The primary reason that we don't have an easy way to cancel is we don't want someone to take their site down by mistake. If we allowed people to easily delete a domain from CloudFlare, without the user first changing their nameservers back to their original registrar, it would cause major issues for the site owner.

8thos 08-12-2011 10:12 PM
LMFAO

ZERO <ibis> 09-09-2011 04:44 AM
We recently switched to cloudflare to mitigate a ddos attack and it worked great. Other than an increase in the speed of the website users have not even noticed it was there. It has been less than a week but in that time I am running with medium security and not having any problems.

8thos 09-09-2011 10:07 PM
Quote:
Originally Posted by ZERO <ibis> (Post 2243787)
We recently switched to cloudflare to mitigate a ddos attack and it worked great. Other than an increase in the speed of the website users have not even noticed it was there. It has been less than a week but in that time I am running with medium security and not having any problems.
What are your security settings? I think I have mine on low. Let me know what you have because I'm unsure which is the best settings without causing too many captcha problems.


All times are GMT. The time now is 05:27 PM.
Page 1 of 3 1 23
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01460 seconds
  • Memory Usage 1,851KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_code_printable
  • (25)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (40)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete