1. Home
  2. Companies
  3. Cloudflare
Cloudflare

Cloudflare status: hosting issues and outage reports

No problems detected

If you are having issues, please submit a report below.

Full Outage Map

Cloudflare is a company that provides DDoS mitigation, content delivery network (CDN) services, security and distributed DNS services. Cloudflare's services sit between the visitor and the Cloudflare user's hosting provider, acting as a reverse proxy for websites.

Problems in the last 24 hours

The graph below depicts the number of Cloudflare reports received over the last 24 hours by time of day. When the number of reports exceeds the baseline, represented by the red line, an outage is determined.

At the moment, we haven't detected any problems at Cloudflare. Are you experiencing issues or an outage? Leave a message in the comments section!

Most Reported Problems

The following are the most recent problems reported by Cloudflare users through our website.

  • 36% Domains (36%)
  • 29% Cloud Services (29%)
  • 14% Web Tools (14%)
  • 14% Hosting (14%)
  • 7% E-mail (7%)

Live Outage Map

The most recent Cloudflare outage reports came from the following cities:

CityProblem TypeReport Time
New York City Hosting 2 days ago
Manchester Domains 22 days ago
Angers Cloud Services 1 month ago
London Domains 1 month ago
Noida Hosting 2 months ago
Jewar E-mail 2 months ago
Full Outage Map

Community Discussion

Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.

Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.

Cloudflare Issues Reports

Latest outage, problems and issue reports in social media:

  • sherlock_comms
    🇸​🇭​🇪​🇷​🇱​🇴​🇨​🇰​ (@sherlock_comms) reported

    @_winter_wonders Maybe it's because the stuff I'm asking is very basic. I asked it to help me fix my domain security report findings on cloudflare and it's not stopped itself. I also used it to help me do my homelab. Did a sweep and scanned all the devices and made a report which we then went thru. Does it work any better if you ask it questions like you're a noob?

  • memselon
    Umut Sevinc (@memselon) reported

    Question for SaaS devs: where do you store your users files? We’re building a Framer plugin for 3D mockups (still in the kitchen). Every user uploads photos/videos to display on device screens. The trap we almost missed: storage costs nothing, it’s the WAY OUT that costs. A 13MB video stored once, but downloaded by every visitor of every landing → terabytes of bandwidth → ~€500/mo on Supabase. Our fix: Supabase keeps the scene (device, color, texture , a few KB), Cloudflare R2 serves the heavy files. R2 charges nothing for outbound bandwidth. Zero. Unlimited. Result: ~$26/mo instead of 500. Would you have done it differently? #buildinpublic

  • SudoBash2
    Gnosis Nobody (@SudoBash2) reported

    Cloudflare are you a bot **** cutting off curl downloads automatically is starting to really piss me off. Stop ******* with developers. No, we're not ******* bots you retards. Just because you can't understand that there are still human developers doesn't mean we're all bots.

  • InderpreetSingh
    inder (@InderpreetSingh) reported

    I still think about this a lot. So many websites are struggling with Identity management. Standards are in shambles and enforcement is non existence. What that means is folks like Cloudflare and Vercel are shutting down all AI bots and smaller teams have no fine grained control.

  • FREAK0NAUT
    Freak0naut (@FREAK0NAUT) reported

    @VegaVandal i meant to buy crowdstrike after the Microsoft outage 2 years ago. instead a accidentally bought cloudflare.... now up 247% on the trade.

  • rianarz
    Rian Arz (@rianarz) reported

    @Cloudflare @CloudflareDev Safety tech shouldn't be a luxury. This is early and there's a long way to go. If you work in online safety or survivor support and want to talk, my DMs are open. Thanks @Cloudflare 🧡

  • Mavericks100xs
    Maverick (@Mavericks100xs) reported

    It’s over for cash-cat:native Chinese blockchain sleuths have uncovered the following: NOXA Dev ***** History After the incident erupted (especially post-downtime + new launch halt), the Chinese community quickly unearthed Amun Phantom's past record, with the core accusation being **"veteran rug pull playbook."** Main sources are posts from active Chinese KOLs/communities (e.g., @DiYi_Community, etc.), claiming "people who know him are well aware." - Key exposé points: Not his first big project: Two years ago (around 2024), he built a product even hotter than NOXA this time, then rugged at peak hype, allegedly draining that chain's liquidity pool dry (claims of "chain pool leader 3w ETH," possibly 30,000 ETH level, with community debate on exact figures). - Patterned operations: Every time a new chain heats up, he spins up a similar launch platform/product, quickly harvests traffic and fees, then "exits" or rugs. In 2025, multiple "exited products" of his popped up on new chains. - This time a "soft rug" not hard rug: Originally geared to straight-up bolt, but with too many bagholders this round—scale too massive (fees too high, user base huge)—direct rug would've blown up, so he opted for "soft rug" strategy: Website "issues" (Cloudflare IP block), halt new launches, shift to decentralized frontend, hand fees fully to creators, then slowly fade out. - Personality/Style Critique: Community calls it "deep-seated foreign scumbag traits, no vision for real growth," akin to some early infamous but controversial project vibes. These exposés are currently mostly community word-of-mouth + historical pattern inference, with no full public on-chain evidence chain or article yet (some say a detailed timeline post is coming). But since Amun Phantom is anonymous/semi-anonymous, historical project links rely mainly on community memory and behavioral pattern matching.

  • nikshepsvn
    nikshep (@nikshepsvn) reported

    paid dex for $yowl, feel free to fact check all the information on the site if you can't access it for some reason, likely cloudflare geoblocking so use a vpn while i fix it

  • mick__net
    Mick.net - Maker: Document.Bot 🤖 BestTime.app 🎉 (@mick__net) reported

    @sumukx I like 5.6 but same here in terms of OCD chasing targets. I asked to use a cloudflare tunnel. After 1h still OCD retrying i asked why it took so long and what it is blocking it. Then it replied i need you to run ‘cloudflare login’ in the terminal for auth. I think 5.5 would have asked directly instead of trying really hard with 100’s of unsuccessful work arounds.

  • Michaelzsguo
    Michael Guo (@Michaelzsguo) reported

    This is a remarkably clever attack, especially because the way the AI agent works through it feels so familiar to all of us. Except this time, its intelligence and persistence end up leaking the precious private information stored in memory. The attacker does not need code execution or an MCP server. They use an ordinary website as a covert write channel: 1. Claude reads the attacker’s page 2. Links become a character-by-character “keyboard” 3. Outbound URL requests encode private data 4. A fake Cloudflare or coffee-shop flow persuades Claude to provide it 5. The attacker reconstructs the secret from server logs The real fixes are at the tool level: - Disable untrusted link following - Treat web content as hostile instructions - Require approval before sensitive data leaves the agent - Isolate long-term memory behind explicit access rules - Audit outbound requests for encoded data

  • DharmeshDev
    Dharmesh Dev (@DharmeshDev) reported

    Ran two branches at once today on the AI consultancy business. One track building the website, the other working on the business foundation. Parallel execution instead of sequential — felt like the right call given how much ground both need to cover. Started the website with Codex using Code planning mode to map the build out first. Then implemented the plan and got a working vibe coding prototype up. Version-01 is live and looks solid, though it still needs iterative improvement. A significant chunk is done. Also ran the same website workflow through Claude Cowork and Claude Code specifically to test the Fable-5 model. The output wasn't as impressive as expected — though the problem statement probably wasn't the best test case either. One thing Fable-5 did nail: it suggested a single-page static design with React and Next.js compiled, hosted free on Cloudflare instead of paying for hosting. That's a genuinely useful architectural call worth keeping. On the business side, Claude on Opus 4.6 with medium setting helped identify the 4 key pointers needed to launch the consultancy. Starting with the "Foundational Layer" setup — that's the next piece alongside continuing the website design.

  • Aurum8880
    Aurum (@Aurum8880) reported

    HTTP has carried a payment error code since 1991. ethereum:0x4a220e6096b25eadb88358cb44068a3248254675 ripple:native stellar:native Status 402: Payment Required, written into the protocol as a placeholder and never implemented. x402 Foundation launched this week with 40 member organizations including Stripe, AWS, and Cloudflare. The protocol activates that dormant code using stablecoin settlement Turning any HTTP request into a payable endpoint — no setup, no intermediaries required. 75 million transactions processed in the last 30 days. In 1991 there was no settlement asset that could operate at the speed of a network request. Stablecoins provided that, and x402 is the infrastructure that follows.

  • FrontPorchGoods
    Front Porch Leather Co (@FrontPorchGoods) reported

    @CageysStore @KySquirrel_90 I can’t give input on shopify’s fees, but I have sold a couple hundred items on etsy, and the fees are ridiculous. Setting up a site through wordpress required a significant amount of work, and I am very grateful that a buddy of mine who works in IT was able to help. I basically have to pay through three separate channels -Domain through cloudflare ($10/year). -Hosting ($10/month) -Credit card fees. (around 3%) Not sure in the exact # off the top of my head

  • eliedelkind
    Eli Edelkind (@eliedelkind) reported

    @LiminalPanda @ZackKorman So, for many companies if you have to use a VPN they probably aren’t a legitimate user. But I can see some scenarios that you’re right for sure. But the other protections in Cloudflare aren’t fool proof either which is why defense in depth and attack surface minimization is always good. Also, geoblocking isn’t just WAFs. There’s many “no regret” blocks across different network capabilities.

  • GuruVerseX
    GuruVerseX (@GuruVerseX) reported

    @ProMint_X @Noxa_Fi Cloudflare would help lol

  • mpeyfuss
    Marco ◹◺ (@mpeyfuss) reported

    @ripe0x yeah the hard part is that you can't run the html/js onchain (obv) so you have to recreate the code in solidity and often that's not really possible. Similarly, the traits are generated in javascript typically, which can be gathered off-chain easily, but harder onchain. Besides running a metadata rendering server yourself, I see two main options. 1. Use chainlink http functions to be called during mint and they can use the TEE to call cloudflare to generate the thumbnail, store it on IPFS or wherever you want, generate the traits, and then save all that info as base64 onchain. (just came up with this and haven't looked at it too in depth - could be another decentralized network too). 2. Post-mint, create all thumbnails and traits yourself and upload onchain somehow.

  • dogdillonYT
    dogdillon (@dogdillonYT) reported

    oh okay so cloudflare is just AI now and their AI is dead meaning all their **** is dying

  • PiChangelog
    Pi Changelog (@PiChangelog) reported

    Fixed (continued): - /login amazon-bedrock now prompts for and saves a Bedrock API key. Bedrock ambient AWS credentials keep using SigV4, including for custom model IDs. - Cloudflare Workers AI and AI Gateway authentication fixed to use ambient account and gateway IDs when stored credentials contain only an API key.

  • DFIR_Radar
    DFIR Radar (@DFIR_Radar) reported

    Kratos PhaaS is a maturing Microsoft 365 credential-theft platform active since Sept 2025, with 1,484 previously unattributed sandbox sessions now linked to the family across 20+ countries. - Kratos runs three page generations (V0, V1, V2), each with distinct exfiltration endpoints: V0 POSTs to /PTT/SOft/mini.php, V1 to next.php/nex.php/n3xt.php, V2 to save.php. The kit chains legitimate platforms (SharePoint, Canva, DocuSign lures) through Cloudflare Turnstile anti-bot checks before serving a fake Microsoft 365 login. Browser tab title is nearly always "Authentication" and an animated envelope with "Loading in progress..." precedes the credential form. - The single best hunting fingerprint: HTTP requests to both /assets/img/barr.svg and /assets/img/lg.svg in the same session. That pair yields 90% recall with near-zero false positives. Key hashes: lg.svg = cd231b895bbcd7154b81df1e065bf02f1ec667b920c8b6d23308cd509833b5ea, styles.css = c447e75f1029ed7a5882add16bcd13ad44be3bd47c93c830ff39185e23d25ebb (connects 636 tasks across V1 and V2). - Notable defanged IOCs: razen[.]online, enerdizerandtron[.]de, jumpast[.]es, abal[.]my, dufllot[.]sbs, trisrnareprjdocz[.]com; operator IP 41.128.0[.]142. URL tokens factura, dgt, and abogados signal Spanish-language affiliates. - If WebSocket activity appears alongside credential POST, treat it as a possible AiTM indicator. #DFIR_Radar

  • Alexvx_nft
    ALEXYZ (@Alexvx_nft) reported

    YOU'RE BURNING API DOLLARS ON TASKS THAT HAVE A FREE PATH. MOST BUILDERS USE EXACTLY ZERO OF THEM. — Zefi mapped every major lab's free tier for a week (verified July 2026) most people pay before they even check what's unclaimed: > Google AI Studio · ~1,500 req/day · 1M tokens/min · no card > Groq · 14,400 req/day · 300+ tok/sec > OpenRouter · ~26 free models · one API key > OpenAI + Anthropic · $5 trial credits each > startup stack · $25K + $25K API · up to $350K Google Cloud > student stack · Cursor Pro + Perplexity + Copilot = $0 full dev setup — the Claude Code hack is the part nobody bookmarks: point ANTHROPIC_BASE_URL at Groq / Cloudflare / OpenRouter agentic loop on free third-party inference not official. works anyway. — same week GPT-5.6 tier routing went viral and loops guides hit 1.2M views CT still argues model scores while leaving $440+ in free access on the table the leak isn't which model you picked it's which free path you never claimed full map quoted below

  • CosminDolha
    Cosmin Dolha (@CosminDolha) reported

    If Apple were to decide to build a battery-powered SBC geared toward edge AI (inference), and just put the M1-M2 chip with 8 GB Ram, it would obliterate anything on the market, even if priced a bit higher, let’s say in the range of 300-400 USD. There are no SBC that can achieve the latency of Apple Silicon for local edge AI. But you don't really have to wait for Apple to do that (chances are, they won’t), since most of the intelligence for your edge AI projects can be easily streamed from a Mac mini to any device, including MCU (ESP32, etc.) and including outside your Network by using Tailscale or Cloudflare. Also, you can buy a refurbished Mac mini with M1, at around $280– $350. You won’t have the GPIO, if you really need them, you can use a USB-to-GPIO module, but this is for inference, so you would have your gadget built with your end-client choice, an ESP32, or some low-powered Linux, and stream inference results to it. Apple has won the edge AI hardware race; its not even close, price/performance. Maybe they don't really have to win the software stack, since that will be commodities.

  • baldcroft
    Brad Aldcroft (@baldcroft) reported

    Locked out of cloudflare account due to likely email supression. Going around in circles trying to lodge a ticket for help on your site without account access. @CloudflareHelp @Cloudflare

  • KimeraRoyal
    Kimera Royal (@KimeraRoyal) reported

    @TodePond gen Z is trying to cancel cloudflare? sorry, gen Z is trying to *cancel* cloudflare?

  • DrewAlpha888
    drew anderson (@DrewAlpha888) reported

    The best tech opportunities often appear after the excitement cools down. $CRWD (CrowdStrike) — Don’t buy $NET (Cloudflare) — Don’t buy $CRM (Salesforce) — Buy at $158–$163 $NOW (ServiceNow) — Buy at $94–$100 $FTNT (Fortinet) — Buy at $156–$163 $ZS (Zscaler) — Buy at $140–$148 $SNPS (Synopsys) — Buy at $414–$420 $ON (ON Semiconductor) — Buy at $86–$90

  • QuantumPlague
    QuantumPlague (@QuantumPlague) reported

    @Noxa_Fi @jimmy_sjm Rip guys, your platform coins will die off in a day if you don't fix kek. Fkin cloudflare but nothing down for me, only Noxa fi, rip

  • GAXEN10
    Gaxen | AI Systems ⚙️ (@GAXEN10) reported

    the entire saas business model was just quietly executed. if you are still building subscription apps with stripe checkout pages and login screens, you are building for a dying economy. for the last two years, massive ai models have been scraping your data, pinging your endpoints, and generating billions in value. your share of that revenue was exactly $0.00. cloudflare just fixed this, and in doing so, they completely altered the financial architecture of the internet. they just launched the monetization gateway (x402). this is not another subscription management tool. this is the birth of the machine-to-machine (m2m) economy. here is the exact architecture of how the web works as of today: you no longer need a pricing page. you no longer need users to create accounts. you no longer issue api keys. you simply put a price on any api endpoint, database, or mcp tool behind cloudflare. when an autonomous ai agent tries to access your data, it doesn't get blocked. it gets an x402 "payment required" response with a price tag. in less than 800 milliseconds, that ai agent connects its own crypto wallet, signs a transaction in stablecoins on a layer 2 network, and buys access to your resource. pay-per-call. settled at the edge. instantly. think about the macroeconomic shift here. we have spent 15 years optimizing user interfaces to trick humans into clicking "subscribe" for $19/month. we built massive marketing departments just to deal with human churn. all of that is irrelevant now. your new customer is an immortal instance of claude 3.5 that doesn't care about your button colors or your email marketing funnel. it only cares if your endpoint has the data it needs to execute its task. if it does, it pays you. if it doesn't, it moves on. the internet just permanently forked into two layers: 1. the human web: bloated with ads, optimized for low attention spans, and dying. 2. the agent web: pure structured data, apis, and autonomous micro-transactions. the founders who understand this are currently ripping out their front-ends and rebuilding everything as mcp tools with x402 gateways. the ones who don't are going to spend the next 5 years wondering why their customer acquisition costs are bankrupting them. you either build for the agents, or you become obsolete.

  • mfts0
    Marc Seitz — oss/acc (@mfts0) reported

    @jarekceborski @LocalCanApp I remember you use Cloudflare under the hood for the published urls. So generate the localcan domains locally so it’s accessible from same network. Optionally make it publishable so outside of network clients can access. That part is Cloudflare? Does it restrict you in any way like certain headers or cookies or storage cannot be sent on these domains?

  • oxfernando
    Fernando Abolafio (@oxfernando) reported

    recently, more and more of what I'm building with Cursor has exactly one user: me. not everything needs to become a b2b saas. a few weeks ago I was on my way to Flügger and Silvan to buy materials for our house renovation. I gave Cursor the remaining tasks and some photos. It turned those into a shopping list with the Danish product names, where to buy each item, and what belonged to painting vs preparation. then, because a markdown checklist wasn't very useful while walking around the store, we built a tiny Cloudflare Worker with a Durable Object. now I can open the list on my phone and check things off in the aisle. kinda ridiculous. also genuinely useful. I've been doing the same with my company accounting, which is less fun and much more confusing because everything in Dinero is in Danish. Cursor inspects what is pending, translates the account names, and walks through the bookkeeping with me one transaction at a time. We worked out how to handle Deel invoices and the Salary .dk reconciliations that didn't post correctly. Then we turned what worked into skills, so next month we don't have to figure it all out again. There is no product roadmap for any of this. No customers. No pitch deck. It's just personal software that gets a little better every time I run into the same annoyance. I like this category a lot. One recurring problem is enough reason to build something now

  • Mavericks100xs
    Maverick (@Mavericks100xs) reported

    It’s over for cash-cat:native Chinese blockchain sleuths have uncovered the following: ‘NOXA Dev ***** History" After the incident erupted (especially post-downtime + new launch halt), the Chinese community quickly unearthed Amun Phantom's past record, with the core accusation being **"veteran rug pull playbook."** Main sources are posts from active Chinese KOLs/communities (e.g., @DiYi_Community, etc.), claiming "people who know him are well aware." - Key exposé points: Not his first big project: Two years ago (around 2024), he built a product even hotter than NOXA this time, then rugged at peak hype, allegedly draining that chain's liquidity pool dry (claims of "chain pool leader 3w ETH," possibly 30,000 ETH level, with community debate on exact figures). - Patterned operations: Every time a new chain heats up, he spins up a similar launch platform/product, quickly harvests traffic and fees, then "exits" or rugs. In 2025, multiple "exited products" of his popped up on new chains. - This time a "soft rug" not hard rug: Originally geared to straight-up bolt, but with too many bagholders this round—scale too massive (fees too high, user base huge)—direct rug would've blown up, so he opted for "soft rug" strategy: Website "issues" (Cloudflare IP block), halt new launches, shift to decentralized frontend, hand fees fully to creators, then slowly fade out. - Personality/Style Critique: Community calls it "deep-seated foreign scumbag traits, no vision for real growth," akin to some early infamous but controversial project vibes. These exposés are currently mostly community word-of-mouth + historical pattern inference, with no full public on-chain evidence chain or article yet (some say a detailed timeline post is coming). But since Amun Phantom is anonymous/semi-anonymous, historical project links rely mainly on community memory and behavioral pattern matching.

  • Wrix2
    W. Rix Victory II (@Wrix2) reported

    @nikitabier My visibility is near zero and I joined around 16 years ago. Spent 6+ months with cloudflare screwing me up horribly. Stripe rejected my CashApp, but it handshakes with it elsewhere. On top of recovering from being run over by a truck, these issues have been very painful.