New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Is there an advantage for CDN/WAF if your server and customers based in the same country?
Hey,
I am wondering If I need CDN and WAF solution for me if my server located in the same country as my customers? I use cloudflare PRO but because the Deutsche Telekom shithole, after 5PM sometimes 20-30 sec to load my website which is... not okay.
As I can see many websites in my country use cloudflare, or maybe they use the cloudflare Business as they are not slow in that time.
What do you think? OR Local WAF without CDN.
Thanks!
Comments
I started moving off of Cloudflare a bit. Not completely, just testing around a bit. I too had too many complaints that, sometimes, Cloudflare made stuff take 20-30 seconds to load for some ISPs.
the static content will be fast via your cloudflare service, however if your webhost is on a busy server and or network after 5PM, the non cached web lookups (server side scripts) will be slow as pizza cheese. Than even a chique CDN cant help you. Do some more investigation around that time, check what is slowing your web so much.
Its as he said before a finicky issue with telekom. Ive a test website which i spin up from time to time and out of lazyness i used clouflare for it. It loads almost like youre on dialup. The page loads faster when i tunnel accross to country into my other home network and open the page there. The first couple times i encountered it, i thought the wifi died.
Hard to say whether you need a CDN or WAF without knowing what your website is.
But if you're like 99% of the world then you have zero real need for either of them.
This sounds like a better option if you really need a WAF.
CF is basically just a MITM platform so that you don't have to use a subdomain for your static assets.
If your traffic is mostly local (i.e. north america or eu or ... ; not related to a single country!) a CDN is clearly not needed.
Local caching & site optimisation are more important IMO. A WAF can't hurt but is it really need ? Some kind of protection can also be brought by using crowdsec or similar app.
Have you tried to use Bunny (aff/non-aff) for your problem with Cloudflare > Deutsche Telekom?
What's going on with Deutsche Telekom after 5PM?
After 5PM you will got 1000-1100MS ping, and 19,56sec to load the website, if you sell something and your site is slow, then you not going to sell anything.
And in daytime ping is around 40ms, and page load within 1,5 sec
It is definitely the peering war between Deutsche Telekom and Cloudflare. Even if the server is in Germany, the traffic is being routed through a congested link to reach Cloudflare's edge and back.
Since your server and customers are in the same country, you likely don't need the CDN function. I would suggest toggling your A record to DNS only. You will loose the WAF, but your latency drop back to normal immediately.
For decades, DTAG has been complaining about the current form of the internet. Companies such as Meta, Alphabet and Amazon generate substantial revenue by using the internet, yet they do not pay ISPs such as DTAG for providing internet access. Instead, these companies demand open and free peering. While unable to block them outright, DTAG has found another method. Traffic shaping. During German primetime, they throttle companies that don't pay them enough for peering, such as Meta or even Hetzner. In fact, DTAG is currently suing Meta for €30 million for providing peering services, stating that Meta abused its dominant position in the social media market to force DTAG to peer with them against their will, because their customers required access to their services.
If you think DTAG is alone in this, you're mistaken. Vodafone has just ended its open peering policy and cancelled direct peering with YouTube and cloud service providers, following in DTAG's footsteps.
your signature defintely explains your post, lmao
Netzbremse explains the problem well:
https://netzbremse.de/en/
How's YouTube traffic routing to Vodafone currently?
via libertyglobal
Edit: i did remember some news about it in the past, i think its also depending on where you live as one new one was Inter.link, which was for Berlin or something
I know this is silly question, but have you compressed the assets? For example using gz/br on nginx, wasm, avif.
Depending on your server routing situation, it can still be helpful if it's really bad. You can definitely set up a WAF yourself.
If you're facing a lot of DDoS attacks, then CDN can be a huge help. If not, it doesn't really matter.
A CDN isn’t required when your server and users are local, but if Deutsche Telekom’s routing is causing 20-30‑second delays, only a CDN with better peering will fix it; a local WAF alone won’t help.
Sure, but with CDN there is an 20-30 sec delay, without CDN its 1-2 sec to load so.. yeah cloudflare shit happening
Perhaps by employing a complex solution, utilizing CloudFlare alongside Bunny's DNS functionality, you could route traffic from Germany exclusively to a server located in Germany running Nginx or Caddy.
This only works while they have a captive audience in the form of customers.
As soon as the public find this out and discover that the reason why their internet experience is so bad is because the company they're paying for it is deliberately making it worse as leverage to extort someone else, then those customers will sooner or later switch to other ISPs that use a different network.
Network neutrality works because it's a net win for everyone.
Have you tried Bunny CDN (aff/non-aff)? It's a kinda good alternative to Cloudflare.