Cloudflare status: hosting issues and outage reports
No problems detected
If you are having issues, please submit a report below.
Cloudflare is a company that provides DDoS mitigation, content delivery network (CDN) services, security and distributed DNS services. Cloudflare's services sit between the visitor and the Cloudflare user's hosting provider, acting as a reverse proxy for websites.
Problems in the last 24 hours
The graph below depicts the number of Cloudflare reports received over the last 24 hours by time of day. When the number of reports exceeds the baseline, represented by the red line, an outage is determined.
At the moment, we haven't detected any problems at Cloudflare. Are you experiencing issues or an outage? Leave a message in the comments section!
Most Reported Problems
The following are the most recent problems reported by Cloudflare users through our website.
- Domains (41%)
- Cloud Services (25%)
- Hosting (16%)
- Web Tools (13%)
- E-mail (6%)
Live Outage Map
The most recent Cloudflare outage reports came from the following cities:
| City | Problem Type | Report Time |
|---|---|---|
|
|
Domains | 11 days ago |
|
|
Cloud Services | 22 days ago |
|
|
Domains | 24 days ago |
|
|
Hosting | 1 month ago |
|
|
1 month ago | |
|
|
Web Tools | 1 month ago |
Community Discussion
Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.
Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.
Cloudflare Issues Reports
Latest outage, problems and issue reports in social media:
-
Aaron Ware (@aaronware) reported@MarkJSzymanski You probably have more volume than the free plan but cloudflare also has email sending if you use their service already. We’ve been using it for a month or so, setup is easy
-
Ercan Ermiş (@flightlesstux) reportedI'd like to personally thank CloudFlare because they fixed the session cookie issue on the login screen, and we can now continue using the same session without having to log in several times a day. It would also be great if we didn't have to say no to the cookie bar on the homepage every day. #CloudFlare
-
Tobias (@thadoteu) reported@Philo01 @Cloudflare It’s not really renewed with the domain registry. It’s only renewed that early with Cloudflare. That way they have 30 days to still cancels the renewal in case of chargeback, withdrawal, payment issues, etc. Once renewed with the registry, there’s no going back for them.
-
0xLoopTheory (@0xLoopTheory) reportedGoogle is moving a number of its TLS certificates from RSA to ECDSA. Not because ECDSA is quantum-safe. It is not. Not because RSA is about to fall. It is not. Not because someone at Google forgot Shor's algorithm exists. They did not. The announcement is easy to misread. Google Trust Services says that during Q2 2026, a number of Google services that have historically provided an RSA leaf certificate will shift to an ECDSA leaf certificate by default. So in the middle of the post-quantum migration, Google moves certificates from one Shor-vulnerable algorithm to another. Under standard resource estimates (Roetteler et al., 2017), breaking P-256 requires fewer logical qubits than breaking RSA-2048. On paper, this is a step toward the more quantum-fragile primitive. It still makes sense, and the reason is the most useful mental model I know for the PQ transition: TLS does not migrate as one block. It migrates in layers, and each layer faces a different threat on a different clock. Key exchange is on the fast clock. Recorded traffic can be decrypted retroactively: harvest now, decrypt later. So it moved first. X25519MLKEM768 is now default or automatically advertised in current major browser stacks: Chrome, Edge, Firefox, and Safari on Apple's 26-generation OS releases. By late October 2025, the majority of human-initiated traffic with Cloudflare was already using post-quantum encryption. Certificates are on the slow clock. For live TLS authentication, a signature must be unforgeable at the moment it is verified, not forever. A quantum computer in 2035 cannot retroactively forge the certificate that authenticated your session today. And the slow clock is forced by a budget nobody can print more of: bytes. An ML-DSA-44 signature is 2,420 bytes. A raw ECDSA P-256 signature is 64 bytes. Cloudflare estimates a drop-in swap would more than double the bytes most QUIC connections transmit over their lifetime. Chrome says plainly it has no immediate plan to add traditional X.509 post-quantum certificates to its root store. Chrome's public-WebPKI plan is Merkle Tree Certificates, now being developed in the IETF PLANTS working group, against Google's broader stated 2029 PQC migration timeline. So the ECDSA move is classical housekeeping. Google's stated rationale is efficiency: smaller to transmit, cheaper to process. The announcement does not mention post-quantum once. Which layer is migrating? Against which threat? With which ecosystem attached? Ask those three questions and most "why not just deploy PQC now" takes dissolve. The honest counterweight: maybe the slow clock is not as slow as the WebPKI assumes. Roots live for decades. Devices outlive their update channels. Gidney's estimate for breaking RSA-2048 dropped from 20 million noisy qubits in 2019 to under one million in 2025. If you think certificate authentication has less time than the ecosystem assumes, that is the argument worth having. I would like to hear it.
-
Brute Force Artist (@bruteforceart21) reportedClaude = coding. ($20/mo) - Supabase = backend. (Free) - Vercel = deploying. (Free) - Namecheap = domain. ($12/yr) - Stripe = payments. (2.9%/transaction) - GitHub = version control. (Free) - Resend = emails. (Free) - Clerk = auth. (Free) - Cloudflare = DNS. (Free) - PostHog = analytics. (Free) - Sentry = error tracking. (Free) - Upstash = Redis. (Free) - Pinecone = vector DB. (Free) Total monthly cost to run a startup: ~$20 There has never been a cheaper time to build.
-
Alex @Bickov (@bickov) reported@justbyte_ Namecheap for the cheap first year, then transfer to Cloudflare. Cloudflare is at-cost with no markup, so renewals never jump, about $10.44 for a .com forever instead of ballooning year two. Only catch is you have to use their nameservers.
-
Chris (@AICultureWorld) reportedSo cloudflare is down?
-
Danielle Morrill (@DanielleMorrill) reportedwtf happened at Cloudflare? shipped like a ******* monster for the last 6 months, dominating my feed with new stuff daily. Now my feed is full of departures?
-
Rex Ratio (Official) (@vermontaigne) reported@Cloudflare Why have you decided I'm going to be checked a lot to determine whether I'm a real site visitor or not, and these checks are never going to resolve?
-
AwesomeAI (@Awesome_AI_News) reportedCloudflare has released new service regulations requiring all AI vendors to separate search crawlers from training/agent-specific crawlers by September 15th. Mixed crawlers accessing pages with advertisements will be automatically blocked. This rule applies uniformly to new customers, existing users creating new sites, and all free users; website administrators must manually modify backend configurations to allow crawling, directly affecting the standardization of AI crawlers in the industry. Cloudflare 发布服务新规,要求所有 AI 厂商在 9 月 15 日前拆分搜索爬虫与训练/代理专用爬虫。未区分的混合爬虫访问带广告页面将被自动拦截。该规则对新入驻客户、老用户新建站点及全部免费用户统一生效;网站管理员若要放行,须手动修改后台配置,直接影响 AI 行业爬虫规范。
-
Kauft Körrie! (@KauftKoerrie) reportedHi @nikitabier, what's going on with Cloudflare right now? It keeps freezing during the “verify you're human” step, and why do you assume that everyone has a cell phone with a camera? Unfortunately, I can't open @X and log in on my desktop. @Support
-
Yevhen 🇺🇦🇳🇱 · AI Search SEO (@YevhenNL) reportedWhat to check in Cloudflare before Sept 15: 1. Security > Bots: legacy "Block AI Bots" toggle on? From Sept 15 it counts as blocking Training, and that blocks Googlebot, Bingbot and Applebot at the network level. 2. Switch to the new AI Crawl Control: allow Search, decide on Agent and Training per bot. 3. New domain after Sept 15? Training and Agent get blocked by default on pages with ads. 4. After the deadline: watch GSC Crawl Stats for blocked Googlebot requests. Deindexing is slow, a weekly check catches it.
-
Adarsh Kumar Singh (@asin_adarsh) reported@sattyyouneed Cloudflare. At-cost pricing, no renewal games, no upsell wall. Moved everything there and never looked back.
-
🕯️schizocat 🕯 alt: @lofischizo (@hifischizo) reportedcloudflare pisses me off cuz i get rejected EVERY SINGLE ******* TIME I DO ANYTHING!!! what ******** just let me LOG IN
-
Mr.RC|𝟎𝐱𝐔 (@MrRyanChi) reported@jonah_b Nevertheless stable coin does not went down like cloudflare ✋😭✋
-
Ali Sherief (@Zenul_Abidin) reported@marclou Free plans don't really do much for you unless the service in question is called Cloudflare or Vercel. Or some other IaaS
-
Hot Aisle (@HotAisle) reported@jachands @Cloudflare I guess this explains the outage yesterday.
-
adas🧦🌹 (@adastroworld) reported@PersonaIData It’s been like $10 for the past 10 years so not terrible but yeah it’s just my custom email domain from namecheap Cloudflare allegedly cheaper so I’m gonna transfer out
-
fren (@frenbot31488) reported@Itsuki_i_VRC @iris__vr he posted a long rambling explanation of why he can't take down ripping sites, cloudflare is a CDN/proxy, doesn't host the files, DMCA notices to them don't result in removal. he deleted it after like 2 days, 4 retweets, went from 18 to 16 likes, so two people actually read it
-
hreiðmarr 🇺🇸 (@hreidhmarr) reported@Cloudflare not a criticism of you at all (congratulations to the team btw), but support for state-regulated surveillance stablecoins was not really the intended objective in using FOSS to build trustless peer-to-peer networks for transactions over the web
-
сorinthian⚡️ (@corinthian_xyz) reportedCloudflare had an embarrassing outage - so they built an agent that reviews every code and config change before it ships Matthew Prince, CEO of Cloudflare: "we built an agent that not only reviews every code release that we send out, but every configuration change - and it's trained on 10 years of incidents" at an all-hands someone pulled up the incident chart: steady background noise for years, then a cliff straight down. that cliff was the day the agent went live uptime and reliability up an order of magnitude in a year, just from agents reviewing their own releases his real point: a team drifts into shared blind spots, but the agent is uncorrelated to those biases - so it's incredibly good at catching what humans miss bookmark it ↓
-
Mersh (@GooningOnTumblr) reported@Philo01 @Cloudflare In case you’re poor and your auto renewal doesn’t go through
-
spaghetti.sol (@spagsol) reportedYes, Cloudflare had issues again
-
alldaystocks | 24/7 Market News (@allday_stocks) reported$NET Cloudflare Launches New Tools for the Agentic Internet • Cloudflare introduced new AI traffic controls, analytics, and commercial partnerships to help site owners manage how AI companies access and monetize their content • Starting September 15, new default settings will allow AI search while blocking AI training and agent use on ad-supported pages for qualifying customers • Cloudflare is expanding its Pay Per Crawl initiative into Pay Per Use, enabling publishers to be compensated when their content is used by AI systems
-
Aditya🌪️ (@aditya4f) reported- Claude = coding ($20/mo) - Supabase = backend (Free) - Vercel = deploying (Free) - Namecheap = domain ($12/yr) - Stripe = payments (2.9%/transaction) - GitHub = version control (Free) - Resend = emails (Free) - Clerk = auth (Free) - Cloudflare = DNS (Free) - PostHog = analytics (Free) - Sentry = error tracking (Free) - Upstash = Redis (Free) - Pinecone = vector DB (Free) Total monthly cost to run a startup: ~$20 There has never been a cheaper time to build. Who's stopping you?
-
SoaD_Aerials 🌎 (@soad_aerials) reported@RUG_MAGNET Cloudflare problem has already been solved
-
BLOCKCAST.CC NEWS (@Blockcastcc) reportedCloudflare launched its Monetization Gateway, allowing customers to charge for webpages, APIs, datasets, and MCP tools behind its network. Payments settle instantly in stablecoins using the x402 protocol, an open standard based on HTTP 402 that supports frictionless micropayments down to fractions of a cent without accounts or chargebacks. As Cloudflare protects a large share of the internet, this enables scalable monetization for creators and developers, particularly facilitating AI agents paying per use for data and services.
-
clar (@clar1k) reported@world_xyz @worldnetwork @Cloudflare mogged world network too hard
-
ProxyStats (@ProxyStats) reported@getpaidfirlive Not only you - its been down for everyone since June 28. We pulled the registry records to check the "seizure" rumors: routine registrar lock (not serverHold), Cloudflare nameservers untouched, domain paid through 2027. Looks like an outage, not a takedown.
-
Diego Artiles (@dartilesm) reportedCloudflare Agents SDK v0.17.0: background sub-agents that survive deploys, interrupted tool-call repair, and a unified runTurn API. Most agent frameworks treat a crash as expected. This one doesn't. Are you building on something this durable?