Just got new alerts

BjarnOP•8/28/23, 8:19 AM

Also someone saying services like buffer.com are unavailable behind Cloudflare

Metaverse AI•8/28/23, 9:26 AM

Hi, I got a Zero Trust question.
I created a tunnel TR. It works fine.
My cloudflared seems running fine.
I created a public hostname to be mapped to an internal(local LAN) site with an internal IP.
When I go to the public hostname I got bad gateway error from Cloudflare.
Error code 502

Where should I check for mis configurations?
Many thanks

Metaverse AI•8/28/23, 9:27 AM

I cannot find a Zero Trust channel, so I post the question here

BBjarn Just got new alerts

BjarnOP•8/28/23, 2:42 PM

Just received even more alerts about performance issues with CF services. No reply on the ticket yet, it's been ongoing for over almost 4 days now... since it's monday I am getting even more people to notice these issues

Tricked•8/28/23, 3:18 PM

Go to cloudflare dashboard and click transfer also unlock the domain on Google domains

Tricked•8/28/23, 3:18 PM

That's basically it

chientrm.com•8/28/23, 4:07 PM

how do I quickly turn my website into maintaince mode, please be back in 1 hourmaintaince mode, please be back in 1 hour?

Original message was deleted

chientrm.com•8/28/23, 4:41 PM

I deployed a worker, should I change dns or redirect?

Original message was deleted

chientrm.com•8/28/23, 4:55 PM

dns maybe cache somehow

BjarnOP•8/28/23, 5:01 PM

@Erisa | Support Engineer Apologies for the ping - but since ~10 min there are lots of performance issues and 502 bad gateways. Have updated the ticket and I was able to get some traces to R2 too (with a slow response time).

Also Discord (which is behind CF) returned these 502's, no trace for that one but has been logged.

Again, apologies for the ping - really won't do this normally. Appreciate the help!

BjarnOP•8/28/23, 5:34 PM

Updated the ticket with cf-rays just now. Seeing issues more in the wild too, some community members are noticing it too so it appears to be more widespread atm.

(all from NL)

BjarnOP•8/28/23, 5:44 PM

Cloudflare dashboard also returning 502's now. More people are sharing their issues now, still all from NL. Really hope anyone can dive into it with a bit more urgency

BBjarn Cloudflare dashboard also returning 502's now. More people are sharing their iss...

Erisa•8/28/23, 6:08 PM

We are aware and its being looked at, but there isn't more I can share right now

BjarnOP•8/28/23, 6:08 PM

Ahh great, thanks!

BjarnOP•8/28/23, 6:08 PM

That's some good news at least - lost my patience a bit after the last 4 days of having these issues, have to apologise for that - but hopefully they'll be resolved soon

Erisa•8/28/23, 6:15 PM

Sorry about that, its been very intermittent/hard to track down and we run on a reduced team over the weekend so getting to everything isn't always easy

Erisa•8/28/23, 6:15 PM

We're making progress now though

BjarnOP•8/28/23, 6:18 PM

Yea completely understandable. No worries, in the end, we're all just doing our jobs. Let me know if you need anything else, will be online for some hours still.

BjarnOP•8/28/23, 6:36 PM

Just wondering; will there be a status page incident for this that I can refer my customers to?

BBjarn Just wondering; will there be a status page incident for this that I can refer m...

Erisa•8/28/23, 7:06 PM

https://www.cloudflarestatus.com/incidents/x3xyb1gqf0dy/

Elevated 5xx/499s errors

EErisa https://www.cloudflarestatus.com/incidents/x3xyb1gqf0dy/

BjarnOP•8/28/23, 7:07 PM

Hero! Thanks

chientrm.com•8/28/23, 7:09 PM

cf cosplay Github

Erisa•8/28/23, 9:30 PM

You need a backend

Erisa•8/28/23, 9:31 PM

even if that backend is a Worker

Erisa•8/28/23, 9:39 PM

Does the action send a request to a backend..?

Erisa•8/28/23, 9:41 PM

Okay

Erisa•8/28/23, 9:41 PM

So you will need to proxy the request to the external API with a Worker, and have the Worker also verify the turnstile response. Then it will work

Erisa•8/28/23, 9:42 PM

There is some examples here https://developers.cloudflare.com/turnstile/get-started/server-side-validation/

Erisa•8/28/23, 9:42 PM

In this part you would run your external API call

Frerduro•8/29/23, 1:58 AM

How long does it take for cloudflare to start caching files? server transmit is peaking up to 4gbps and I dont see cloudflare caching.

Frerduro•8/29/23, 1:59 AM

Frerduro•8/29/23, 1:59 AM

the file is in the list of cached files by cloudflare

Isaac McFadyen•8/29/23, 2:00 AM

It should be pretty quick - but make sure that users are actually hitting Cloudflare, not your server directly.

Isaac McFadyen•8/29/23, 2:00 AM

See the graph above which should have a bandwidth number

Isaac McFadyen•8/29/23, 2:00 AM

Also you can check the Cf-Cache-Status header which should say HIT not DYNAMIC - if it's DYNAMIC then Cloudflare is intentionally not caching for some reason

Frerduro•8/29/23, 2:00 AM

We are using zero trust tunnel. and firewall is locked down it can't be access externally

IIsaac McFadyen See the graph above which should have a bandwidth number

Frerduro•8/29/23, 2:02 AM

IIsaac McFadyen Also you can check the Cf-Cache-Status header which should say HIT not DYNAMIC -...

Frerduro•8/29/23, 2:02 AM

I dont know how to do that.

FFrerduro I dont know how to do that.

Isaac McFadyen•8/29/23, 2:04 AM

If you give us a URL we can check, or I can show you how.

IIsaac McFadyen If you give us a URL we can check, or I can show you how.

Frerduro•8/29/23, 2:04 AM

sent in dms

FFrerduro sent in dms

Isaac McFadyen•8/29/23, 2:06 AM

That's odd. I'm seeing a continual MISS (not DYNAMIC) which shouldn't be happening, really, since I'm hitting the same colo. One sec.

IIsaac McFadyen That's odd. I'm seeing a continual MISS (not DYNAMIC) which shouldn't be happeni...

Isaac McFadyen•8/29/23, 2:07 AM

Solved in DMs - the file was too large to cache on your plan.

ZZnuff With any of CF's products (except maybe a worker?) there is no way to rewrite a ...

Isaac McFadyen•8/29/23, 2:08 AM

You could with a Worker yes, but keep in mind POST and GET are different for a reason. GET can have bodies but isn't supposed to and some reverse proxies will strip it if they see it. GET can also be cached and POST shouldn't be (which matters for things like form submissions).

Isaac McFadyen•8/29/23, 2:09 AM

But if you understand the risks then yeah, a Worker could do it.