Best Cloudflare Settings

Boost your website speed with free Cloudflare (CDN) and also optimize your website by Enabling some best Cloudflare settings in your Cloudflare account. In this article, you will see some useful settings which help to boost your website like a rocket.

Cloudflare is one of the best platforms for web security and especially for WordPress or blogger websites and if your website is running on WordPress then you should really need Cloudflare security.

Because Cloudflare provides the same extra layer of security and these security features you will get to see in your Cloudflare account settings page.

Security features like Distributed Denial of Service ( DDOS) protection settings, CDN  settings, catching settings, firewall settings and many more interesting settings offers by Cloudflare users.

If your website running on WordPress and you’re searching for how to optimize your wordpress website then go anywhere because Cloudflare offers you WordPress supercharge feature only for wordpress users.

In this wordpress supercharge feature Cloudflare automatically optimize your website performance and this feature is only for the paid version but don’t worry guys this wordpress supercharge plan starts from 5 $/mo. This plan is really value for money.

Now, let us see  Cloudflare account settings in detail and also see Cloudflare recommend settings for a website.

Recommended best cloudflare settings

First, before introducing the best Cloudflare settings you need to have your Cloudflare account fully activated and your domain name properly added to your Cloudflare account.

If, yes then you should be ready to see Cloudflare performance settings and if you don’t have your Cloudflare account click here to create an account.

After creating an account, you need to connect your domain name with Cloudflare and if you don’t know then don’t worry here is a complete guide of how to set up Cloudflare on a website totally fresh and new method.

Now let us see Cloudflare recommended settings for websites and here is the guide:

  • DNS  – Enable proxy on (A) and (CNAME) record
  • SSL/TLS – Enable and set to ‘flexible’
  • Always use HTTPS – Make it ON
  • Automatic HTTPS  rewrite : Make it ON
  • Speed > auto minify – Make It ON all  three ( HTML,CSS, JS)
  • Speed > Brotli – Make it ON 
  • Speed > Rocket Loader – Make it ON

These are few basic recommended settings by Cloudflare itself for every website but you can also customize according to your website and Cloudflare also have some extra settings for better security and speed.

So, to know every Cloudflare settings friend you need to read the complete article because if you do any changes in your Cloudflare settings and you don’t know that setting will break your website then what will you do?

But don’t worry friends will discuss each setting in detail and  I also suggest to you what settings should enable or disable and these all-important things you only under when you read the complete article.

Now friends let us see Cloudflare settings in detail.

A brief guide of Cloudflare settings

Cloudflare Overview settings

Under Attack Mode – by default, it is OFF and Doesn’t make it ON because these settings help you to block suspicious traffic or invalid traffic on your website. If your website will hack or getting bad traffic then in this case Make it ON.

Development Mode –  If you doing some changes to your website (images, Html, CSS, JavaScript) then make it on because this setting temporary disable the Cloudflare catch and you will fresh version of your site instead of seeing the catch version.

Domain Registration – In this setting, you don’t have to change or add anything because this is only your Domain detail.

Active Subscription – this will tell you the current active Cloudflare Plan and from here you can also upgrade to a paid plan.

Support Resources – I think I don’t need to talk about these settings because this is for contact purposes.

API (Zone ID & Account ID) – Hmm, this API  sound looks very cool and it will help to manage your Cloudflare account from others services by using API features.

Pause Cloudflare on Site – this setting you don’t need to touch because by mistake if you enable that your Cloudflare services totally stop.

Remove Site from Cloudflare – if you don’t like Cloudflare services then you can able to remove your domain from here.

Cloudflare  Analytics

In these settings, you will see your Cloudflare data and also how much bandwidth use or request by traffic. It is better to see Cloudflare Analytics I suggest you use Google Analytics.

In Google Analytics you will monitor your whole website traffics data and it totally free offer by google.

In Cloudflare analytics settings you don’t need to see or change anything because there is nothing to change.

Cloudflare DNS settings

Cloudflare DNS settings are the most important because in these settings your hosting or Domain will be connected with your Cloudflare DNS and by mistake if you change any record without knowing then your website will crash.

In these settings, you only touch when you won’t change your hosting or domain and wanted to add some DNS record for other services etc.

If you want to change your hosting or wanted to point your Domain name to new hosting and you really don’t how to do then we are also ready to help you.

To point Cloudflare Domain to new hosting, first, you need to copy your new Host IP and paste new host Ip in your Domain A record ex ( A – websiteName.com – 45.85.46.157 – replace with new host IP) and wait for 5 minutes. Your domain was successfully added to a new host.

Enable proxy – this setting will protect your real IP and No can find your real website IP except you.

Cloudflare Nameserver – here you will see your default Cloudflare nameserver which you added in your Domain verification.

Custom Nameserver – by default, it is disabled and this is only for a paid version.

DNSSEC – don’t touch this.

CNAME Flattening – don’t touch this too.

Cloudflare SSL/TLS  settings

Do you know Cloudflare provide you free SSL certificate for a lifetime and know a day SSL certificate is really important for website security and this is one of  Ranking factor on google algorithm?

SSL Make it (ON) and select “flexible” because this will Encrypts traffic between the browser and Cloudflare.

SSL/TLS – recommendation – by default, it is (OFF) and doesn’t touch.

Edge Certificates > Always use HTTPS –  Make It (ON)

HTTP Strict Transport Security (HSTS) – Don’t touch this.

Minimum TLS Version – Don’t touch by default I this is proper.

Opportunistic Encryption – leave it (ON)

TLS 1.3– leave it (ON) because this will improve your website security or performance.

Automatic HTTPS Rewrites – by default, this setting will be OFF and Make It (ON) because this setting will fix mixed content errors in your website and it helps to redirect your all HTTP URL to HTTPS.

Certificate Transparency Monitoring – Don’t touch leave it (OFF)

Disable Universal SSL– if you planning to use a custom SSL certificate on your website then make it OFF.

Client Certificate – don’t touch leave it as it is.

Origin Server– leave it as it is.

Custom hostnames – leave it as it is.

Cloudflare firewall settings

Overview – in these areas you will get to see countries or IP blocks by Cloudflare security.

Manged rules – this is only for paid version not for free

Firewall rules – if you need extra security then you can use these settings to block or allow specific traffic and from here you only get 5-page rules for firewall security. In my case don’t use this setting because Cloudflare security is enough for you.

Bot – It will be a required paid plan.

Tools> IP Access Rules –  this will give you more control on IP and you can able to allow, challenge and also block some IP.

Tools > Rate Limiting – you don’t need to touch this setting.

Tools > User Agent Blocking – it will block some browsers or applications from accessing your site.

Tools > Zone Lockdown – only for the paid version.

Cloudflare Access Settings

you don’t need to visit this setting because this will not boost or secure your website.

Cloudflare Speed Settings

Overview – here you will see your website speed statistic and how your website performs on different internet speeds.

Speed > optimization > Image Resizing – Only for paid plan

Speed > optimization > polish – upgrade to pro.

Speed > optimization > Auto Minify – this sound looks good because after enabling this setting it will minify your website code (HTML, CSS, JavaScript) to deliver a faster website. Activate that setting if not enabled.

Speed > optimization > Brotli –  first, make it (ON) because this will compress your website data and transfer your data with more speed.

Speed > optimization > Optimize Delivery – have you can under the name Optimize Cloudflare for WordPress and it’s need paid plan to activate.

Speed > optimization > Enhance HTTP/2  periodization – need to upgrade pro plan.

Speed > optimization > TCP – need to upgrade pro plan

Speed > optimization > Mirage – need to upgrade pro plan.

Speed > optimization > rocket loadermake it (ON) because this will remove the loading pain time of JavaScript and sometimes this setting will break your website. My recommendation is you first try & test then  Leave IT ON otherwise it will break your website.

Speed > optimization > Caching – need to upgrade pro plan.

Speed > optimization > Mobile  AMP real URL – if your website support Amp then this setting is only for you.

Speed > optimization > redirection –  if you want to redirect your domain with any other domain URL then settings are only for that purpose.

Cloudflare Cache settings

Overview – need to upgrade your plan

Tiered cache – need to upgrade

Configuration > Purge cache – from here you can control your catching settings and when you do some changes in your website then you need to tell Cloudflare by using settings to purge the cache means Cloudflare make a fresh copy of your website and when some visit your site, they will see fresh and updated website.

Configuration >catching level – select recommended option standard.

Configuration> Browser catch TTL – this setting is really helpful because with the help of this setting your website tell the users browsers to store website cache for your selected time period and by default is 4 hours but if your website content is not updating daily then select more then  4 to 5 day because when user revisit website it loads fast.

Configuration> CSAM scanning tools –  don’t try because is in the beta phase.

Configuration> Always Online Leave It (ON)

Configuration> Development modeleave it (OFF)

Configuration> Enable query string short– upgrade to Enterprise plan.

Cloudflare Workers Settings

Don’t need to touch that setting

Cloudflare page rule settings

Cloudflare page rule is really the most important setting because with the help of these settings you can control the Cloudflare cache and especially for the wordpress website.

Page rules tell Cloudflare how to scan a website, how to cache, what to check or not, security level etc.

in Cloudflare free plan you will 3-page rule means you are only able to create  3 rules for Cloudflare and if you need more pages then you switch to pro but friends this 3-page rule is enough for every website.

This Cloudflare page rule is really helpful for wordpress websites and if you know how to create a Cloudflare page rule for your wordpress website then it is good but if you don’t here is the complete guide of how to create a perfect  Cloudflare page rule for a wordpress website.

1: HTTP://*yourdomain.com/*

Browser Cache TTL: a day, Cache Level: Cache Everything

2: HTTP://*yourdomain.com/wp-admin*

Browser Integrity Check: On, Browser Cache TTL: 30 minutes, Always Online: Off, Security Level: High, Cache Level: Bypass, Disable Apps, Disable Performance.

3: http://*yourdomain.com/*preview=true*

Browser Integrity Check: On, Browser Cache TTL: 30 minutes, Always Online: Off, Security Level: High, Cache Level: Bypass, Disable Apps, Disable Performance

Friends, don’t worry if you facing any problem creating page rules then please comment on this and will try to make a separate article on this topic.

Cloudflare network settings

HTTP/2already activated don’t touch

HTTP/3 – (with QUIC) Make it (ON)

0-RTT Connection Resumption – leave it (OFF)

IPV6 Compatibilityalready activated don’t touch.

gRPC – leave it (OFF)

WebSocketmake it (ON)

Onion RoutingMake It (ON)

Pseudo IPV4 – leave it (OFF)

Ip Geolocationmake it (ON)

Maximum Upload time – don’t Touch

Response buffering – need to upgrade

True-Client- Header – need to upgrade

Cloudflare Traffic settings

Traffic: Argo – Cloudflare Argo service help to optimize your DNS and also decrease your loading time. This service is not free but also not bad because it’s reduced your bandwidth cost and increase reliability or performance in your website.

Argo Tunnel –  I didn’t use this setting.

Load Balancing – Load balancing is really awesome feature if you have heavy traffics like amazon, Flipkart, Walmart, etc.

Load Balancing analytics – need to upgrade.

Health check – need to upgrade.

Waiting room – need to upgrade.

Cloudflare stream settings

I think  you don’t need this feature because you have some better options for Video streaming for example (YouTube, Vimeo )

Cloudflare custom page settings

IP/county block – upgrade to pro

WAF Block – upgrade to pro

500 class error – upgrade to pro

Enable origin error Page – upgrade to pro

Always Online error – Need to upgrade

Basic security challenge – need to upgrade

Manage Challenge – Need to upgrade

County challenge – Not free

I’m under attack challenge – Not free

429 error – not free

Cloudflare Apps Settings

This feature is really cool because you don’t need to go anywhere and you can add some functionality to your website using the Cloudflare platform.

In this Cloudflare App feature, you directly integrate some useful features into your website.

Cloudflare scrap shield  settings

Email address Obfuscation: Make it (ON) because it will hide your Email address and Bots did not able to collect the Email address on your website.

Server-side Excludes: Make IT (ON) because it also helps to hide specific content from disreputable Visitors.

Hotlink protector: Leave it (OFF) because this setting protects your website images for a site- linking with another site. Usually, it creates some extra load in your server and for such reasons you need to leave it OFF.

Conclusion

 Hello friends, I hope you like this content because in an article I have covered every fresh and new setting in Cloudflare. With the help of this article, you can activate the best Cloudflare setting for your site.

If you are a beginner then definitely this guide helps you to find your best Cloudflare settings for your wordpress website and some other platforms.

So, friends if you really like this content, please share your opinion regarding this article in the comment section and also tell what choirs you looking for and will try to address that choirs and also what is the best solution for it.

FAQ – best cloudflare Settings for Website.

Is Cloudflare good for WordPress?

Yes, Cloudflare is good for WordPress because it helps to optimize your WordPress website with the help of Cloudflare (CDN). Cloudflare settings also give you more freedom to boost your website.

How do I point DNS to Cloudflare?

To point DNS to Cloudflare here is the step:
1: Create an account on Cloudflare
2: Add your Domain to your Cloudflare account
3: Select Cloudflare plan
4: After selecting a plan Cloudflare will start scanning your domain DNS record
5: Then Cloudflare gives you her own DNS record
6: Copy Cloudflare DNS record and paste in your Domain DNS manager
7: Wait for 5 to 10 minutes then your domain successfully point to Cloudflare.
If you need complete detail then check this latest article on how to set up Cloudflare.

Spread the love

Omkar Sharma

Web Developer & Programmer by education, blogger by Hobby…Founded “Surferpage.com”

Leave a Reply