What is CloudFlare's Basic Security Level?

Adjust the basic security level to modify CloudFlare's protection behavior relative to which visitors are shown a captcha/challenge page. A low security setting will challenge only the most threatening visitors. A high security setting will challenge all visitors that have exhibited threatening behavior within the last 14 days. Essentially off will act only against the most grievous offenders. We recommend starting out at low.

I'm Under Attack Mode should only be used when a site is having a DDoS attack. Visitors will receive an interstitial page for about five seconds while we analyze the traffic and behavior to make sure it is a legitimate human visitor trying to access your site. I'm Under Attack Mode may affect some actions on your domain, such as using an API. You're able to set a custom security level for your API or any other part of your domain by creating a page rule for that seciton.

Related: What the Threat Scores are based on relative to Security Level

Have more questions? Submit a request


Article is closed for comments.