Cloudflare One Reviews

At this stage for our smaller clients, we are using Cloudflare One for internet access to provide more security for browsing and those types of things. We also use the access part for one of our servers for our own users. Additionally, we are currently conducting a proof of concept for a larger client with about 200 users, where they also make use of the internet access and the private access to get to their different servers and file shares.

I have used Cloudflare One's Identity-Aware Proxy, and it is quite straightforward from what I have seen so far. The app registration on the Azure side integrates fully into Cloudflare, and I am very satisfied with that part because it is easy to set up.

The integration of Cloudflare One's Secure Web Gateway and Zero Trust Network Access works without any issues. That part is pretty automatic, and if you complete the rest of the setup, it comes together by itself with no issues from my side.

What makes it nice is that we can actually start replacing on-site firewalls at this stage for the smaller clients because it does not matter if they go to a coffee shop or work from home; they are still secured by the same connection.

The hops get shorter and you get better latency. We have done testing to see if it is better. One thing that we did notice with our proof of concept with our current client is that they have people connecting from the UK. When they used their previous VPN solution, uploading CAD drawings and other files to the server took a long time. They mentioned that it is much quicker on Cloudflare One's solution. I definitely believe that is part of the improved performance, and I am satisfied with that as well.

What is nice about Cloudflare One is that it makes the setup easier and also easier to train technicians to maintain it. Compared to legacy systems, we do not need to get fancy firewalls in place that are costly. That is definitely also a cost-saver with Cloudflare One.

From my perspective, Cloudflare One is quite a new-ish solution. I did see that the entire portal changed about a month ago, which was a bit of a pain to relearn, but I think once everything gets settled, that would be a better experience. From a logging perspective, it is still a bit difficult to see exactly what users are being blocked with the current views. Perhaps from a user experience point of view, it would be great if they could make it easier to quickly pinpoint which users are getting blocked and for what reason.

We have been using Cloudflare One from about the start of the year. We started experimenting with it with our own users, and then we have actually rolled it out to a few of our smaller clients.

At this stage, the minimum commit of Cloudflare One is one thing that makes it easy for us to go to a client with just a couple of users and to sell it. In comparison with Zscaler, you need a minimum of 50 seats, which is a bit rough for the space that we operate in. I think that is the major advantage of Cloudflare One that we have seen so far. The rest of the solution is pretty on par with the rest of the competitors. They all do the same thing where you do DNS filtering and website blocking and all those types of things. I am pretty satisfied with what we have rolled out.

We are not pulling any metrics to track changes in security events with Cloudflare One at this stage.

Support is quite quick from what I have seen the few times that we did log calls regarding Cloudflare One, so there are no concerns on that side. They were definitely able to assist.

For the smaller clients, let's say 5 to 10 users, Cloudflare One takes about two to three hours for the setup on the portal. Once we send a technician on site to roll out the Cloudflare WARP agent, it is quite quick. Within an hour, they would be able to roll it out to between 5 to 10 users to get them up and running.

We usually send one or two technicians on site to deploy Cloudflare One and do that configuration.

We are actually trying to partner with Cloudflare as we are a managed service provider company. We have tried to get into the MSP program that Cloudflare offers, but at this stage, they take a long time to reply. For our clients that are currently using it, we are setting up individual accounts going through credit cards for the company. However, we would like to move over to the MSP program in the future if possible.

On that scale, I have not really tested yet how Cloudflare One's global network infrastructure influences our network performance. I would rate this review as a 9 out of 10.

I work with AWS services, which includes EC2 instances, creating servers, databases, working with S3 buckets, Cloudflare One, and different major services by AWS. I am working with Amazon Connect at the moment and other AWS services.

I have been able to work with Cloudflare One for many functions, such as content delivery, using CDN to block images, videos, and static files. I have been able to use it for DDoS protection. I have been able to use it to translate a domain name into an IP address to make it easier for people to use. We also implemented edge computing to run code directly. It was something I struggled with for a while, but I have been able to understand more of it.

I use it mainly for its primary functions. I use it for content delivery and DDoS protection because that is one of the areas where I work as a cybersecurity analyst. The addition of assets and TLS encryption, data in transit and data at rest, mainly within our organization and also for traffic from outsiders. I also use it for web application firewall. I am not a big-time user of Cloudflare One. I select specific functions because we run a hybrid system of cloud using Azure and AWS. I pick out things I need to do which are related to my function as a cybersecurity analyst.

Using Cloudflare One makes my work quite easy because for DDoS protection, all I need to do is understand the OSI model and click. It makes it easier than trying to write a command line or use a Linux command. It is quite direct. You just need to make some clicks and everything is complete. The first thing I commend AWS generally and Cloudflare One for is providing an interface to work with.

I commend AWS for always bringing in new updates and new user experience based on how the platform changes, and also the addition of new features, including improved latency. On a general model, I commend them for the new changes that make work much easier. The addition of AI into AWS is something I always look forward to and use for specific tasks. The new user experience is always something I look forward to.

They have actually implemented many improvements. A year ago, I would have suggested the addition of AI into the system, but they have done it. With the use of AI, there are many grounds to break and ideas to work on. Currently, I am 90.9% satisfied with the experience I have been having on Cloudflare One.

Automation could be improved where you can easily add a TLS and SSL certificate to an application or web app if the developer did not include it. We should be able to toggle it on to automatically implement TLS instead of doing it the conventional way. That is the only issue I have regarding specific features or enhancements that I would like to see included in future releases of Cloudflare One.

I have been working with Cloudflare One since 2021.

The experience was quite good because we received regular updates about activities in the back end and explanations about costs. I remember when our developer had spun up more EC2 servers than needed, having three or four unused servers that we were being charged for. They informed us that these servers were not in use, which explained the high costs. Initially, we were supposed to have seven servers spun up, but we had ten. We saw them every day but assumed they were being utilized. They broke everything down on the page. We were able to identify the issue and solve the problem from our end. The person who handled our ticket was fantastic because he provided the information needed to solve the issue on our end regarding technical support.

Positive

I have heard about the zero-trust browser isolation feature of Cloudflare One but cannot remember if it is the part with the toggle for zero-trust.

I used the older interface for specific projects, such as DDoS protection, edge computing, and mainly for images, files, and transfers, but have not used the recent interface of the zero-trust network access model in Cloudflare One. It is something I can check and potentially start using.

The only thing I know about pricing is when our team lead alerts us about using services we were not supposed to use. I am not involved with payment, finance, or cost management, but I know we are limited to certain services that we cannot use without creating a ticket or asking the manager for permission.

We received training directly from the platform vendor regarding the procurement of Cloudflare One. When moving to the cloud, the organization hired people to guide us through cloud services. Most of the apps we use were from the platform or marketplace. They thoroughly explained the marketplace, which helped us when we purchased Cloudflare One.

For protection, I recommend trying it. It is quite easy to use. Aside from an issue on AWS for about a day in late 2022 or early 2023, there have not been any notable issues. It is quite easy to use and very efficient. If I need to advise someone about using Cloudflare One, I would recommend trying it as it is good for their environment and organization.

On a scale of 1-10, I rate Cloudflare One a 9.5.

My main focus is on security. Security and consultation are key areas for me.

Clover is the best product globally. I'm very satisfied with the environment and the dashboard. Basic deployment is very straightforward for use in my enterprise, making it easy for employment. 

The tools are fast. When translating the DNS for my page, the DNS Clover is easy to implement into the bundle.  

FlowFA is the best tool in my industry. It is easy to implement, and the machine learning provides many reports. Viewing the dashboard, reports, and analytics is straightforward for me.

Feedback could be enhanced. While I work efficiently with Clover as a partner in Mexico City, sometimes the information and requests are easier to manage with more concrete solutions. 

For the solution stopping us for e-learning, I appreciate the concept yet need more resources or courses in Mexico, preferably in Spanish. Certifications are easy, however, I require more real-world environments and instructors.

I have been using it for about one year.

I enjoy using it and do not see a need for more potential with Clover. It is easy to schedule. The platform is fast. When a client expands, it is quick to schedule and adapt with Clover’s tools.

It is easy to schedule. The system is fast. When a client expands, it is quick to adjust using Clover’s tools.

I would rate the customer service as seven out of ten. It is not effortless to contact them, however, solutions are provided in a reasonable time. Having an enterprise customer experience is fast yet somewhat complex.

Neutral

The initial setup is straightforward for me. However, I require more education about some applications, especially in Clover One. Repeat the question, please.

Pricing is competitive. Akamai is more expensive, in my view.

I have observed many companies in this industry, however, I prefer Clover for the pricing. I do not have much experience with Akamai, only comparing WAF. For me, Clover is easier, although I am not currently using Akamai.

Clover may be the best tool for security. I am very fond of it and do not require additional potential from Clover. Basic deployment is easy for my enterprise. The tools are fast. 

Overall product rating: nine out of ten.

Cloudflare One's primary use case for my organization is to protect servers and to provide remote access with the VPN, strong authentication, and DDoS protection.

The integration of Secure Web Gateway and Zero Trust Network Access has had a straightforward impact on my organization. My use case was quite basic, so there were no real issues. Cloudflare One is not very powerful, but for what we require, it is basic and sufficient.

Cloudflare One has assisted in securing my remote workforce through a SASE solution with Cloudflare One and the Workers part, although I am not currently using the Workers component.

In my opinion, Cloudflare One can be improved mainly through compatibility, as the integration should be much simpler because it is currently too closed and too proprietary.

Regarding additional features for Cloudflare One to be more competitive, I believe interoperability with a stack from Amazon, Microsoft, or Google should be improved.

I have been working with Cloudflare One for many years.

I am no longer using Forcepoint today and I do not have any interest in it anymore because my project is over.

I stopped using Forcepoint a bit less than one year ago because the project was moved to Purview. I was a consultant working as an enterprise architect, and my goal was to bring cybersecurity while moving to the cloud for a bank. They were using Forcepoint but stopped using it and moved to Purview instead.

My customers are dealing with Purview tools, but I am not. I have no further involvement with them as I finished the project approximately six months ago.

I worked only with the DLP and the SASE part. I have not dealt with Cloudflare One Workers as it was more focused on protection.

I mainly deal with the SASE part of Cloudflare One, not the Worker part. I have not used its Identity-Aware Proxy because in my cases I was only able to utilize local identities.

When I say Cloudflare One is not very powerful, I mean compared to Purview or Forcepoint, as it does not have much capacity. It is starting to have some capabilities, as one of my colleagues now works for Cloudflare, and the product has improved a lot.

We used to have a traditional VPN earlier, but now we are using Cloudflare Access instead of our traditional VPN. With Cloudflare, we can apply some conditional access to the user's workstation as far as their AV policies or AV updates are concerned. We don't need to expose our VPN endpoints to the internet now.

It's the endpoint exposition. We don't need to expose our VPN server to the internet and need a zero-test solution. I can apply some conditional access to the endpoint that's connecting to our network to check their security policies or the security condition of their workstation.

Once the workstation is trying to connect to my internal network, then I would like to check the discrete condition of these endpoints that are trying to access my internal network. We created some conditional access. We have CrowdStrike, to check if the CrowdStrike is installed, to check if it's updated, and to check for Windows updates. We created some conditional policies to check it.

For the topic of improvement, providing some training material is one of my suggestions.

I have been using Cloudflare Access for around six months as a customer.

It is very stable. I would rate the tool's stability a ten out of ten.

The solution is very scalable. I would rate the scalability a ten out of ten.

We use it to have the VPN of our firewall, and then we are looking for a zero-test solution. To give a better experience for our customers and to improve the speed of our environment we had the other solution. We have our other solution also with Cloudflare. Once they presented the Cloudflare Access, we started the POC and switched our VPN to the Cloudflare access.

It is not complicated. I would rate the initial setup a seven out of ten.

As for the deployment, while considering the POC phase and the implementation, it took three months. It required two analysts, and they sent a senior secret analyst for deployment. The solution is deployed on-premises in our organisation. We are a cloud provider, so into our own cloud but on-premises. To maintain the product, there are two analysts.

The pricing is somewhere in the middle. I would rate the pricing a seven out of ten.

I would rate the product a nine out of ten. All the needs that we had, we could address with this solution. For example, one of the conditions is to use the MFA, and then we implemented this access with MFA also. With some configuration with API, we did some API automation also. In the rollout phase of this project, we could do, like, 20 things about what this solution has.

Cloudflare Access provides secure access to internal applications for employees, external members of the organization, or third-party providers. It acts similarly to a VPN but uses a different kind of tunnel.

Cloudflare Access is part of the Zero Trust philosophy.

Cloudflare Access has a feature that involves using the Cloudflare client on your endpoint device, which can be a PC, printer, router, or even a virtual machine. This client connects to an internal connector within the client's network and acts as a forward proxy. While Cloudflare's WAF and CDN function as reverse proxies, the zero trust approach with Access is a forward proxy. This setup protects and regulates access to internal applications based on policies. Unlike VPNs, which provide network-based access, Cloudflare Access offers application-based access, ensuring users have controlled and secure access to specific applications rather than the entire network.

Cloudflare Access has strong integration with Microsoft, among other platforms. However, when it comes to Kaspersky, we have clients who typically encounter challenges. The usual setup involves configuring a forward proxy, an IDP, and a CASB. Orchestrating these solutions can be challenging if the client already uses a VPN client such as Check Point or Mobile VPN.

Clients typically do not replace their VPNs all at once; instead, they gradually phase out the old solution. The interaction between Cloudflare Access and the legacy VPN solution can be complex, particularly ensuring seamless access without introducing new restrictions. This complexity arises not from the product itself but from the nature of migrating to a new system. Migrating ten thousand employees daily is impractical, so a step-by-step approach throughout about a year is often necessary to facilitate a smoother transition.

I have been reselling Cloudflare Access since 2019.

Cloudflare Access is constantly evolving. Class A is a very fast mover in product development, creating numerous products rapidly. This speed is an advantage but can also be a disadvantage because it is hard to keep up with. Fastly is also quick-moving, which sometimes leads to trial and error. They might release a highly marketed product, but they need to make significant changes if it doesn't perform well. Consequently, Cloudflare has a reputation for moving fast with product development and breaking things.

I rate the solution’s stability a nine out of ten.

Cloudflare Access primarily focuses on customer self-onboarding, assisting them in setting up their access. They do not provide a professional service akin to setting up something on their platform; instead, they guide users through tutorials or examples. This support model can be compared to YouTube's approach: providing instructions but not directly handling or altering user data. 

The initial setup is straightforward. You need a connector and a machine within the network. If you go to the hotel and want your keys behind the desk, someone gives you the keys only if you show your passport or credit card or have booked the hotel room. The connector in the IT world functions similarly. If you have the proper credentials and permissions, it only gives you the key to your room.

The key gives you access to your room and not other floors. Think of the network as the hotel and each room as an application. The connector client gives you a key to access a particular application.

To maintain this setup, you need an agent on your device. This agent constantly communicates with the connector to verify your access rights. If the security policy changes and you are no longer authorized to access a particular application, the connector will enforce this change, and you will lose access. This is the function of the security policy and the connector.

Cloudflare Access is one of the best integrations available. While about two hundred vendors offer similar services, Cloudflare's approach as a SASE solution stands out. Clients prefer a single platform rather than managing multiple solutions. Cloudflare combines all its services into one platform, providing a single pane of glass. This allows clients to eliminate the need for multiple, disparate solutions and manage everything through Cloudflare's unified platform.

Try it out. It has a free plan, a pro plan, a business plan, and an enterprise plan. It's very easy to onboard; customers should try it out to see the benefits. Onboarding is very easy with Cloudflare. You can onboard seamlessly. It's very API-focused. 

Cloudflare has the largest NVIDIA compute base on its platform. They are a significant reason NVIDIA's product availability has been very short. For instance, they purchased hundreds of thousands of computing units from NVIDIA over the past two years. They are very well-positioned to introduce new products, regardless of what they do with AI. The current AI language models are well-suited for native English speakers. However, if you need something in German or French, it's improving but still flawed.

Overall, I rate the solution an eight out of ten.

My company uses Cloudflare Access to help us with the DDoS protection part. The tool also takes care of content delivery as it has a very good content delivery network that we use for better DDoS protection across all our platforms.

The most valuable feature of the solution is that it offers very good security, which increases the security score and provides a good performance. The tool also offers good scalability, and the dashboard, along with real-time analytics, is very good.

My company has many complex applications. When there are any dynamic changes in complex applications, the tool takes a lot of time, making its analytics-related area a major matter of concern where improvements are needed.

The initial setup phase of the product can be improved by taking care of the huge number of configurations required in the product.

I have been using Cloudflare Access for three and a half years. I am a customer of the solution.

It is a stable solution, and my company doesn't have issues with it as of now. Stability-wise, I rate the solution an eight out of ten. Sometimes, the product experiences downtime for maintenance purposes, making it an area of concern.

It is a scalable solution.

Around 400 people in my company use the solution.

The solution's technical support is good.

I rate the technical support a nine out of ten.

Positive

I have experience with Akamai. Compared to Akamai, Cloudflare is good as it reduces latencies and gives good performance.

The product's initial setup phase is neither easy nor complex, making it a moderate process.

The solution can be deployed in three days with the help of three engineers.

Cloudflare Access offers a very good investment rate in terms of security, analytics, and user performance, making them a return on investment per the financial KPIs. Percentage-wise, the product's ROI is 60 to 70 percent.

The price of Cloudflare Access is the same as compared to Akamai, but I get better performance from Cloudflare. My company has to make yearly payments towards the licensing costs attached to the solution. There are no hidden charges apart from the licensing costs of the solution.

The product's maintenance process is okay, and one person can manage it.

The product can be used by organizations of all sizes from a security point perspective and also in terms of its performance and user behavior.

I rate the overall product an eight out of ten.

The Cloudflare DDoS is being used for Web Application Firewall. DDoS is built back into the Web Application Firewall so we inherited the same from the DDoS protection.

The simplicity of the solution is its valuable features as almost no effort was needed to learn the configurations. It is also one of the cheapest firewalls available in this category. 

There are premium tier live service and lower tier live service, so we opted for the lower tier. But there is no medium tier where we pay a little extra and get a bit more service. So if that can be improved. 

I have been using Cloudflare DDoS for three and a half years. 

It is a very stable solution.

It is a very scalable solution. They are beautiful and designed for large environment. We are very small companies, so we never reached the potential of this.

I do reach to the support from time to time and they seems to be all very knowledgeable. I rate the support eight out of ten.

The initial setup is straightforward. I rate the initial setup a three or four out of ten. The deployment took two hours time. The deployment was done by me, the security guy and the infrastructure guy.

The pricing of the solution is cheap. The licensing cost is also very low. I rate the cost and pricing a three out of ten.

The using or choosing the solution depends on a person's use case, budget and in how much time they want to learn. The usage is unique to each person's environment. We use a very budgeted version and it works fine for us. 

I rate the solution a seven out of ten. 

We use the product to access applications that are restricted to employees only. 

Cloudflare Zero Trust Platform removes the risk of exposing the applications to the public. 

Cloudflare Zero Trust Platform needs to improve its documentation. It took time to do the implementation. 

I have been using the product since January. 

I rate the solution's stability a ten out of ten. 

I rate the product's scalability a ten out of ten. 

Cloudflare Zero Trust Platform's deployment can be complex if the documentation doesn't cover the use cases. 

Cloudflare Zero Trust Platform's pricing is good. 

I rate the product a nine out of ten. 

We have to make sure that we are protected in our domain, our website from the public Internet because we don't want any compromise to our site.

With DDoS, we have to ensure that we are not hijacked. So that's why we want to eliminate the attacks on our infracturer. 

The capabilities of the software are strong enough for me to do what it's supposed to do. For me, we don't need to do a lot of configuration on our site. We just enable it and monitor it.

Cloudflare is good at consolidating the solution embedded into one single console, which makes it interesting for us to explore more on Cloudflare. Besides that, the CDN performance has also helped us improve the accessibility of the site to the public.

There is little room for improvement dashboard-wise. 

In future releases, I would like to see alerts. The software has automated alerts, but the automated alerts are not available in the mobile app.

Now, we have to be fast to get ready, not just from the end-user site, but we have to know first if possible.

I have been using Cloudflare DDoS for almost three years. 

So far, we haven't received any complaints or issues from our application site. So far, we don't see any issues that are concerning. Because I am the one managing the infrastructure, the others are managed by my application team.

So, it has been a stable product for us. 

There are more than five end users in our company. So, we added a key percentage that manages the product and the system.

When I stepped into the current company, the system was already onboarded.

We use Cloudflare WAF CDN and DDoS protection for our domain.

The initial setup is easy and straightforward. For me, it's easy because we only need to point our DNS to Cloudflare, so we receive traffic from Cloudflare.

I'm suggesting using Cloudflare based on our experience. This is in terms of compliance. So, it complies with the top tech standards. And configuration is easy for us. We don't need to stress it for customization or configure rules. We enable it, and it's done. We only monitor the logs and any issues. So I'm suggesting you use Cloudflare if you want to.

Overall, I would rate the solution an eight out of ten.