Cloudflare Developers•3y ago

https://prnt.sc/7PwiSw1CLoSp

Lightshot

Screenshot

Captured with Lightshot

lokiwindOP•7/11/23, 10:49 PM

Why the api usage in the 1st picture does not have the feature I marked in the 2nd picture

Llokiwind https://prnt.sc/7PwiSw1CLoSp

Chaika•7/11/23, 10:54 PM

A really good way to figure out stuff is by looking at what the Dashboard does, ctrl+shift+i to pop open Dev tools, and then the network tab, and then do that action and check what API calls it makes

Chaika•7/11/23, 10:54 PM

In this case, it looks like preload is just an undocumented boolean

Chaika•7/11/23, 10:54 PM

You can click give feedback in the bottom left if you want to report that

lokiwindOP•7/11/23, 10:57 PM

Aahh thank you, could you report this for me

Raghav Sharma•7/12/23, 3:55 AM

I am planning to move from route 53 to cloudflare DNS. But we dont need our data transfer costs on aws to increase. How do I go about peering my cloudflare account with AWS VPC? Can someone help ?

RRaghav Sharma I am planning to move from route 53 to cloudflare DNS. But we dont need our data...

dave•7/12/23, 4:24 AM

Route 53 vs Cloudflare DNS should make no difference in terms of data transfer costs.

F0rce•7/12/23, 9:11 AM

I am trying to get a Warp Client Device Profile (Zero Trust) to run, but I am failing and I don't know why.

I added Okta as OIDC and SCIM provider. So in the Profile for my device rule I am using the "User Group Names" selector with the name of my group as value. But it seems like that this value is never set (ref: https://developers.cloudflare.com/cloudflare-one/policies/filtering/identity-selectors/#okta-oidc).

What am I doing wrong ?

Identity-based policies · Cloudflare Zero Trust docs

With Cloudflare Zero Trust, you can create Secure Web Gateway policies that filter outbound traffic down to the user identity level. To do that, you …

Original message was deleted

zegevlier•7/12/23, 9:26 AM

I think you're in the wrong server, Cloudflare doesn't do Cpanel hosting

zegevlier•7/12/23, 9:27 AM

No worries

Zzegevlier I think you're in the wrong server, Cloudflare doesn't do Cpanel hosting

sathoro•7/12/23, 12:10 PM

imagine cpanel for DO

Hhylobatidae are there any plans to support more than 2x environments for Pages? currently yo...

James•7/12/23, 2:17 PM

Yes! I believe the goal is to support any number of environments in the future, with Workers and Pages convergence. No specific eta on that yet, but stay tuned

CChaika It's funny the Biz and Ent difference though, Ent is very special

PencilNavigator•7/12/23, 2:52 PM

i personally think the best thing for ent plan is access to cloudflare's china network

PPencilNavigator i personally think the best thing for ent plan is access to cloudflare's china n...

Chaika•7/12/23, 2:54 PM

That's not base enterprise though, need an ICP License and I believe it's an addon/extra cost

Unsmart•7/12/23, 2:54 PM

Yeah china is... special

CChaika That's not base enterprise though, need an ICP License and I believe it's an add...

PencilNavigator•7/12/23, 2:55 PM

does it have unmetered ddos protection on china network

Chaika•7/12/23, 2:55 PM

no clue, that's all scary enterprise custom agreement stuff

Chaika•7/12/23, 2:55 PM

it's through JD Cloud's datacenters/etc, not through CF's own Datacenters

Unsmart•7/12/23, 2:56 PM

I doubt anything would be too different from the normal enterprise agreement its just mostly government stuff you have to deal with but no clue

PencilNavigator•7/12/23, 2:56 PM

ik that

Chaika•7/12/23, 2:56 PM

i don't even know if normal enterprises get unmetered ddos protection or if it's something they pay for, maybe varies per service/attack level/etc

PencilNavigator•7/12/23, 2:56 PM

https://i0.hdslb.com/bfs/new_dyn/835e88398021ce70dc922eaeab162ac112590.png@518w.webp

Chaika•7/12/23, 2:57 PM

ent agreements have ndas and other scary stuff

PencilNavigator•7/12/23, 2:57 PM

jdcloud's ddos traffic charge

CChaika i don't even know if normal enterprises get unmetered ddos protection or if it's...

James•7/12/23, 2:58 PM

Yes

Unsmart•7/12/23, 2:58 PM

Only way you will really get answers is by talking to sales not much we can help in here about that stuff

CChaika That's not base enterprise though, need an ICP License and I believe it's an add...

PencilNavigator•7/12/23, 2:59 PM

icp license is easy to get if you are from china

Chaika•7/12/23, 3:01 PM

is it? Interesting, look slike there's two different types as well, a filling and a license

CChaika is it? Interesting, look slike there's two different types as well, a filling an...

PencilNavigator•7/12/23, 3:02 PM

it depends on your site type

PencilNavigator•7/12/23, 3:03 PM

if you are an individual and want to run sth like a blog or a self host network storage, then its pretty easy

PencilNavigator•7/12/23, 3:04 PM

u just need your ID (scan both side), photo of you holding the id, and a agreement or sth that you need to sign

PencilNavigator•7/12/23, 3:06 PM

for business then it's probably harder. Depends on type ICP license may not be the only thing you need to get

PencilNavigator•7/12/23, 3:07 PM

e.g. https://bilibili.com a famous chinese video site (like youtube)
this is on their footer (full of licenses)

PencilNavigator•7/12/23, 3:07 PM

PencilNavigator•7/12/23, 3:11 PM

If it's translated it looks sth like this

Business License Information / Network Transmission of Audiovisual Programs License: 0910417 / Network Culture Operation License 沪网文【2019】3804-274 No. / Radio and Television Program Production and Operation License: (HU) No. 01248 / Value-added Telecommunications Business License 沪B2-20100043
/ Internet ICP License: Shanghai ICP No. 13002172-3 / Publication License 沪批字第U6699号 / Internet Medical Information Service Qualification Certificate 沪-非经营性-2022-0011 / Business Performance License 沪市文演（经）00-2253 |
Undesirable information reporting mailbox: help@bilibili.com Incidents involving teenagers (under 18) reporting mailbox: teenprotect@bilibili.com
Shanghai Internet Reporting Center |12345 Government Service Hotline |
Shanghai public network security preparation 31011002002436 | child pornography information reporting area | anti- pornography and combating illegal reporting
Online harmful information reporting area:
China Internet Illegal and Undesirable Information Reporting Center Dear friends, the Shanghai police anti-fraud dissuasive telephone "96110" is specifically designed to avoid your property is damaged by fraud and set up, please once you receive the call, immediately answer.
Company Name: Shanghai Broad Entertainment Digital Technology Co., Ltd | Company Address: No. 489 Zhengli Road, Yangpu District, Shanghai | Tel: 021-25099888

Chaika•7/12/23, 3:12 PM

that's like 10 licenses lol

PencilNavigator•7/12/23, 3:13 PM

yup, so depends on type it may not only requires a ICP license

PencilNavigator•7/12/23, 3:15 PM

baidu, a search engine, has an Internet Religious Information Service License

PencilNavigator•7/12/23, 3:15 PM

but anyways ICP license is the minimum requirement to legally run a website in china

PencilNavigator•7/12/23, 3:16 PM

ofc you can serve your website outside china to avoid this issue but it will likely get blocked by the GFW if traffic went up

PencilNavigator•7/12/23, 3:19 PM

there are also many ways GFW uses to block traffic for certain sites, for cloudflare protected sites they use SNI block (also perodically blocking traffic to cloudflare IPs), for google they blocked all google IPs, etc.

Original message was deleted

PencilNavigator•7/12/23, 4:12 PM

ESNI packs will simply just get dropped before getting out of china route

PencilNavigator•7/12/23, 4:13 PM

ECH is based on DoH which gets blocked too just like DoT

PencilNavigator•7/12/23, 4:14 PM

well they managed to block it

PencilNavigator•7/12/23, 4:14 PM

not only, the IPs too

Chaika•7/12/23, 4:15 PM

ech isn't based on doh or require it either, but I'm guessing they could somewhat easily block all connections with encrypted sni or encrypted client hello with deep packet inspection

CChaika ech isn't based on doh or require it either, but I'm guessing they could somewha...

PencilNavigator•7/12/23, 4:15 PM

yes

PencilNavigator•7/12/23, 4:15 PM

connections are blocked if sth like esni is detected

https://prnt.sc/7PwiSw1CLoSp

Similar Threads

Similar Threads

Similar Threads