What does Cloudflare's Security Level mean?

The Security Level uses the IP reputation of a visitor to decide whether to present a challenge. The IP reputation is calculated by an internal algorithm on our end and ranges from 0 to 100. Here's what each Security Level means with regard to the IP reputation: 

  • HIGH --  Threat scores greater than 0 will be challenged.
  • MEDIUM -- Threat scores greater than 14 will be challenged.
  • LOW -- Threat scores greater than 24 will be challenged.
  • ESSENTIALLY OFF --  Threat scores greater than 49 will be challenged.

Adjust the Security Level for your domain by going to the Firewall app, as seen below.

firewall-app.png

We recommend starting out at medium (the default setting) to adequately protect your site.

I'm Under Attack Mode should only be used when a site is having a DDoS attack. Visitors will receive an interstitial page for about five seconds while we analyze the traffic and behavior to make sure it is a legitimate human visitor trying to access your site. I'm Under Attack Mode may affect some actions on your domain, such as using an API. You're able to set a custom security level for your API or any other part of your domain by creating a page rule for that section.

Still not finding what you need?

The Cloudflare team is here to help. 95% of questions can be answered using the search tool, but if you can’t find what you need, submit a support request.

Powered by Zendesk