Cloudflare status: hosting issues and outage reports
Problems detected
Users are reporting problems related to: domains, cloud services and web tools.
Cloudflare is a company that provides DDoS mitigation, content delivery network (CDN) services, security and distributed DNS services. Cloudflare's services sit between the visitor and the Cloudflare user's hosting provider, acting as a reverse proxy for websites.
Problems in the last 24 hours
The graph below depicts the number of Cloudflare reports received over the last 24 hours by time of day. When the number of reports exceeds the baseline, represented by the red line, an outage is determined.
July 12: Problems at Cloudflare
Cloudflare is having issues since 02:50 AM IST. Are you also affected? Leave a message in the comments section!
Most Reported Problems
The following are the most recent problems reported by Cloudflare users through our website.
- Domains (39%)
- Cloud Services (29%)
- Web Tools (14%)
- Hosting (11%)
- E-mail (7%)
Live Outage Map
The most recent Cloudflare outage reports came from the following cities:
| City | Problem Type | Report Time |
|---|---|---|
|
|
Domains | 19 days ago |
|
|
Cloud Services | 1 month ago |
|
|
Domains | 1 month ago |
|
|
Hosting | 2 months ago |
|
|
2 months ago | |
|
|
Web Tools | 2 months ago |
Community Discussion
Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.
Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.
Cloudflare Issues Reports
Latest outage, problems and issue reports in social media:
-
billdozer (@OP13) reportedUsing Claude to fix my old wordpress blog theme one prompt at a time I probably should just move this to GitHub pages or self hosting (with Cloudflare Tunnels), but I’ve had this thing for 16 years and old habits die hard
-
openwa (@openwadev) reported@mddanishyusuf @Cloudflare @Namecheap split between cf and porkbun. dont put all your domains in one basket, especially the one you use to log in to the domain service.
-
David (@semisauced) reported@jpoliveras Yea they have the cloudflare cs model where support's based on your spend. I've had them actually come thru once while only spending like $1k/yr with Twilio but there's no guarantees. Only way you can ensure getting customer support is by purchasing it or by spending >$10,000k/yr
-
Vatta (@forkvat) reported@lenondenonn I FOLLOWD FINALLY IT LET ME WHEN THE CLOUDFLARE THING NEVER LET ME 🥹
-
Tom Rush (@tr4777) reportedI’m activating KER-453 as the sole security child and using the OFF issue workflow to carry it through current-truth preflight, minimal remediation, adversarial review, one PR into staging, automatic staging deployment, bounded test-identity proof with cleanup, and Linear closeout. Before editing I’ll identify the exact profile-contract, persistence, authorization-consumer, OpenAPI, and regression-test files; production, provider, credential, Cloudflare/Render configuration, and unrelated auth semantics remain outside scope. /codex
-
Cyber_Racheal (@CyberRacheal) reportedThis is infact entirely true. A Department of Justice court filing confirmed that employees from the Department of Government Efficiency (DOGE) moved a massive dataset to an unauthorized location. Under the direction of agency tech leadership, a live copy of the Numerical Identification System (NUMIDENT) database was uploaded to a custom cloud server. This database contains the sensitive personal information, birth details, and Social Security numbers of more than 300 million Americans. The agency’s internal security teams explicitly flagged the action as "high-risk" with a potential for "catastrophic impact". The situation grew worse when officials admitted that data was improperly shared through an unapproved, third-party server network hosted by Cloudflare. A federal whistleblower, agency Chief Data Officer Charles Borges, revealed that the data transfer bypasses independent security monitoring and auditing protocols. Government lawyers acknowledged that the Social Security Administration cannot fully account for the data. They currently lack the access needed to verify who viewed the files, what exact information was shared, or if the records still exist on the outside server.
-
metal gore solid (@shartdotcloud) reportedi get more out of my 5 dollar cloudflare workers plan than the thousands i have spent on AWS over the years. they are so responsive to customer feedback. it's really like AWS customer obsession migrated over to the OTHER orange cloud
-
Ana (@Purrykana) reportedScreenshot I caught: fake Cloudflare "Session Verification" with instructions Ctrl+C → Win+X,A → Ctrl+V → Enter. Red flags: 🚩 Real Cloudflare Turnstile NEVER asks you to copy commands to clipboard 🚩 SRI integrity mismatch on beacon.min.js — computed sha512 didn't match the declared hash → sign of a crudely cloned real Cloudflare page 🚩 Fake Ray ID (easy to check format/validity) 🚩 A calendar booking link (Cal.com-style URL) used as the lure before redirecting to the fake challenge page
-
Earth Ending Asteroid (@TwistedMister32) reported@Algorand @Cloudflare So many things going on, yet such bad price action. Why's that?
-
komm64 (@komm64) reported@Silvialexisrose That's the smoking gun — it's not pixtube or your network's speed, it's Chrome's new post-quantum TLS handshake. Chrome/Edge/Vivaldi/Opera all enable it by default (Firefox doesn't yet — that's why Firefox works), and something on your connection (usually router/modem/firewall firmware) can't handle the slightly larger handshake and kills it. Your phone works because it takes a different path. Quick fix in your Chromium browsers: 1. Go to chrome://flags (or edge://flags, vivaldi://flags, etc.) 2. Search "post-quantum" (also try "kyber" or "ML-KEM") 3. Set the matching flag to Disabled, restart the browser. That should make them all work. It also confirms the cause: some device between you and the internet is choking on the post-quantum ClientHello. Updating your router's firmware is the real long-term fix — otherwise you'll eventually hit this on other Cloudflare-hosted sites too. Thanks for testing all those combos, that's exactly what pinned it down 🙏
-
Yepsurethatsme (@yepsurethatsme) reportedWhy is the @Cloudflare support bot so bad? It is so limited and it is broken in ways that just waste the user's time.
-
ZEE (@CodeWithZeee) reported@boristane @vercel @CloudflareDev I have probably over 300 works and run every Cloudflare project known to man, if you want to stress test this I’d be down
-
sol87 (@Sol87_live) reported@JonathanLigmas @Luffydude1 @prestonjbyrne Right now it's as easy as signing up for any web service provider(they can't block AWS, Azure, Cloudflare) copy/paste 1 thing into the terminal, put the file it creates to any device, now you have VPN on any major service provider.
-
2xnmore (@2xnmore) reportedRight now, while your eyes move across this sentence, something out there might already be pretending to be you. Not someday. Not in some distant future. Right now, while you're reading this. More than half of everything moving through the internet is no longer human. Cloudflare put a live number on it. 57% bot. 43% human. Their own CEO expected this in 2027. It arrived eighteen months early, and by his own admission, it stunned him. Sit with that for a second. Somewhere tonight, a machine is filling out a form using a stolen photo of someone's face. Somewhere tonight, a machine is opening an account nobody authorised. Somewhere tonight, a machine is trying to move money out of an account that isn't its own, using nothing but a convincing enough copy of a human being. And here's the part that should actually scare you. If more than half of every login could already be a machine wearing a human's face, what happens the next time your bank calls to confirm your identity? What happens the next time your vote needs verifying? What happens the moment someone builds a fake version of you good enough to fool the system standing between your money and whoever wants it? Most systems built to stop that are still asking you to prove who you are with things that can be stolen. A password. A photo ID. A database entry sitting somewhere, waiting to be breached. One team already saw this coming. Quietly. Inside Bittensor. Thirteen months ago. It's already live, and almost nobody outside a small circle has heard of it yet. Full breakdown below. Most people just found out too late. @opentensor $TAO
-
Hot Aisle (@HotAisle) reported@CherryJimbo @Cloudflare Oh and customer support is a 2/10. It goes through salesforce, sends ****** emails, programmed to just auto closes issues, and is awful ux. 2 points for having anything available at all.
-
Santiago Carvajal Garcia (@Santiagocarva_) reportedthis reminds me of those old xploitz-style tools back in the day, you’d make a fake facebook login page, drop the link, and as soon as someone entered their credentials you’d get them instantly. with Cloudflare Drop, attackers can basically do the same thing now but way easier, no account needed, drag and drop a folder, and use some javascript to steal the login details in real time. this could end really badly. but heyyy, good idea btw
-
Adebayo (@debayoorr) reportedCloudflare is still down and somehow I've become a network engineer, a hostage negotiator, and a personal IT department, none of which I signed up for.
-
Shinjae Kang (@zemnanet) reportedA Worker deploy can now carry the versions your app actually installed, not just package.json ranges. That makes dependency drift a release-handoff problem. Which artifact would you review first: lockfile, CI log, or upload receipt? #cloudflare
-
Frank “Dot Matrix” Lee💎 (@fullfrankchan) reported@biilmann And you're juuuuuust stingy enough with the free credits that if you have to iterate more than you thought you end up buying a plan. Upside is, it's so dang good that you don't really care. Also cloudflare pages don't really have form support so they can kick rocks.
-
DeepakNess (@DeepakNesss) reportedrclone is a great way to mount Cloudflare R2 in Finder – this post shows a really minimal setup using nfsmount, no macFUSE required: It works well, but it's a live mount: no offline access, no sync status, and you'll want to set up a launchd agent to auto-mount at login.
-
Thomas Ankcorn (@thomas_ankcorn) reported@uphiago @LukeberryPi This site would be free on Cloudflare no issue
-
John Serrao (@serraotweets) reported@powerbottomdad1 I think it probably comes down to how long investors allow those hyperscalers to be cashflow negative. Maybe another year or two? The real alpha is who can do inference cheaply and generally have an agentic friendly platform. Cloudflare and Vercel seem like the two most likely winners on that front, IMO.
-
S_A.A | WordPress Developer | Ai (@saafolabi_me) reportedThe fix: → Blocked the IP range in .htaccess and CSF firewall → Added rate limiting via mod_ratelimit: 100 requests/minute per IP → Enabled Cloudflare Bot Fight Mode (free on all Cloudflare plans) → Added robots.txt rules to block known commercial scrapers → Enabled Cloudflare's "I'm Under Attack" mode for 24 hours Bot traffic: dropped to near zero within 4 hours. Bandwidth: back to normal the next week.
-
Bhaskar Thakur (@BTofficiel) reported@NirantK @immortaldip @Cloudflare Can't you rename the older versions? Would that be a problem with compliance?
-
mirroring (@mirrorsrmirror) reported@HotAisle pretty plz. i even asked the cloudflare ceo a while back but he never answered but someone told me their docker images support anything but haven't tried yet will be trying soon (it can bring you business depending on the software i end up making)
-
Nas (@Nas_tech_AI) reportedYou can’t believe this: you spent more on coffee this month than on a startup’s infrastructure. If you’re still waiting for the “right moment” to build, this is it. The cost of entry has never been lower. - Claude = coding ($20/mo) - Supabase = backend (free) - Vercel = deploying (free) - Namecheap = domain ($12/yr) - Stripe = payments (2.9%/transaction) - GitHub = version control (free) - Resend = emails (free) - Clerk = auth (free) - Cloudflare = DNS (free) - PostHog = analytics (free) - Sentry = error tracking (free) - Upstash = Redis (free) - Pinecone = vector DB (free) Total monthly cost to run a startup: ~$21 There has never been a cheaper time to build.
-
Vikas Kapadiya (@KapadiyaVikas) reported@CherryJimbo @Cloudflare I will give AI Gateway 3/10 because there are so many goatchs, (just like every CF service), The AI Gateway works very well for text-based calls, but as soon as you move to image-based, they silently fail. We had around 20 gateways that we had to remove the code and go back to directly calling the APIs. Also, their document does not mention which services only are supported with their SDK. For example, Amazon Bedrock does not work. I have created a PR, but it never got merged.
-
Zaher 🦋@zaher.dev (@zaherg) reportedhey @RhysSullivan , it seems the latest version of the selfhosted it broken (at least the docker image is) Cannot find module '@cloudflare/worker-bundler' from '/app/apps/host-selfhost/dist-server/serve.js' missing sourcemaps for /app/apps/host-selfhost/dist-server/serve.js
-
Aakash Reddy (@rayyyyyofsun) reported@CherryJimbo @Cloudflare The renaming and wanting to merge into workers phase and support during that duration was bad
-
James Ross (@CherryJimbo) reported@rayyyyyofsun @Cloudflare I'd have probably given Pages an 8/10 a couple of years ago, but can't today given its trajectory and dwindling support sadly.