How do CDNs work to mitigate threats?
Layer 3 or 4 DDoS are absorbed by the CDN as design (IP, TCP ,UDP), the high volume doesn't reach your origin server so you are automatically protected.
But in case of layer 7 DDoS, all application attacks (SQL injections, XSS, Remote file inclusion), you need a Web Application Firewall (WAF) to protect against this kind of threat, the CDN will not "see" and of course not block these attacks (and it's not his role)
Because the CDN have normally a WAF, a reverse proxy and a lot of locations to replicate in miliseconds your site. I know Cloudflare better and this is the response can I answer you.
If you have a CDN, does it mean you don't have to worry about DDoS attacks or will hackers still succeed in carrying out DDoS attacks?
I'm a VAR/System Integrator and I don't see any problem once you have Cloudflare.
Let the community know what you think. Share your opinions now!