Many websites are down, so much for decentralised internet.
Also the irony that some “is it down”-detectors using Cloudflare are also down.
Cloudflare Global Network experiencing issues
Submitted 11 hours ago by themachinestops@lemmy.dbzer0.com to technology@beehaw.org
https://lemmy.dbzer0.com/pictrs/image/f7de6d08-137a-413b-ba21-ab08b9c7ecac.webp
Comments
thingsiplay@beehaw.org 9 hours ago
Anarch157a@lemmy.dbzer0.com 10 hours ago
Who’s willing to bet it’s DNS ?
crazycraw@crazypeople.online 9 hours ago
not Lupus?
kbal@fedia.io 9 hours ago
Pretty quiet on lemmy without .world and .ca and whatever else. I'm glad to see beehaw still up.
themachinestops@lemmy.dbzer0.com 9 hours ago
Glad to see it doesn’t use cloudflare.
ramble81@lemmy.zip 8 hours ago
All three instances I have accounts on use CF. I was beginning to think it was my client I was using or they suddenly implemented the “Great Firewall of USA” and figured out a way to block Lemmy instances.
nimble@lemmy.blahaj.zone 8 hours ago
Blahaj here too!
yxp@lemmy.radio 8 hours ago
Also .radio . They’re fantastic.
schnurrito@discuss.tchncs.de 8 hours ago
both lemmy.world and lemmy.ca are working for me right now? Maybe they’ve come back up.
confusedpuppy@lemmy.dbzer0.com 8 hours ago
Even though I don’t host anything important, I’m still glad I found alternative ways to hosting my own stuff without the use of any of Cloudflare services.
I’ve noticed over time that the self-hosted communities have been suggesting Cloudflare Tunnels less and less since Trump and his gang took over America. Maybe this latest outage will push more people to not recommend Cloudflare again in the future.
I still remember when I first got into self-hosting and being mocked pretty hard for questioning the use of such a large centralized service like Cloudflare. I’m glad I persisted and kept learning in my own direction but that still was very demotivating at the time.
themachinestops@lemmy.dbzer0.com 7 hours ago
I think the only thing that is very had to replicate from cloudflares ia ddos protection since they take the hit instead.
confusedpuppy@lemmy.dbzer0.com 7 hours ago
True.
My self-hosting strategy is wildly alternative and not one I speak much about publicly. I’m the only person connecting to my own domain so as long as I continue to practice shutting the fuck up, I can get away with using multiple layers of obscurity rather than fiddling with third party solutions.
I check my logs daily and the only activity I ever see is my own. Since I am not hosting anything critical or sensitive, I have the opportunity to experiment this way without much risk to myself.
The way I’m set up, I am not concerned with DDOS attacks because it would fail to get past the Dynamic DNS. If I were hosting a social media platform or something more public, then I would need to take stronger measures to protect myself and that data.
coaxil@lemmy.zip 8 hours ago
The only thing I use CloudFlare for is encrypted DNS stuffs, other suggestions for this?
confusedpuppy@lemmy.dbzer0.com 8 hours ago
Currently I’m using DeSec.io for my Dynamic DNS and
Caddyas my reverse proxy to automatically handle encryption certificates. It takes a little extra effort setting up a DeSec.io module with Caddy but since I got it working, it’s been essentially zero maintenance.
Virku@lemmy.dbzer0.com 10 hours ago
The status page is overloaded and just gives http 504 errors. Kind of ironic that a cdn provider gets that type of error.
themachinestops@lemmy.dbzer0.com 10 hours ago
Virku@lemmy.dbzer0.com 10 hours ago
Works for me now as well. I guess it was a temporary thing. Still not something you would expect.
_Nico198X_@europe.pub 9 hours ago
Europe, pleeeeaaaasssseee! Get off of this infra!
themachinestops@lemmy.dbzer0.com 7 hours ago
It is not just Europe the entire world should stop using American companies for everything. Amazon, Microsoft, and cloudflare. A big portion of the internet is US dependent. Russia and China seem to realize how big of an issue this is, Europe still do dependent.
_Nico198X_@europe.pub 7 hours ago
sure, i’m with you. i just happen to be in Europe.
Blaze@lemmy.dbzer0.com 10 hours ago
Had to get that account back as piefed.zip, piefed.social and lemmy.zip cannot be accessed.
Cool to see other people still able to access the Threadiverse
db0@lemmy.dbzer0.com 9 hours ago
Ye we’re not relying on cloudflare for precisely this reason.So much of the “decentralized” internet just got brought down by one providing failing.
Blaze@lemmy.dbzer0.com 9 hours ago
Thank you as always for your service!
Sergio@slrpnk.net 9 hours ago
ikr signing into my slrpnk.net account was like going to an old home I hadn’t been in for a while.
BastingChemina@slrpnk.net 8 hours ago
No issue on slrpnk.net
OpenStars@discuss.online 8 hours ago
Discuss.online is still going strong!:-)
Blaze@lemmy.dbzer0.com 8 hours ago
On the other hand, the only Piefed instance that is still up is piefed.blahaj.zone it seems
yxp@lemmy.radio 9 hours ago
I’m willing to move away from cloudflare if only I can expose servers without a global IP and needing to open port on the router side.
qjkxbmwvz@startrek.website 9 hours ago
VPS+VPN, this is what I do.
VPS has public IP and runs WireGuard “server”* and a reverse proxy (and fail2ban…). Reverse proxy points to my home computer over the WireGuard link. No open ports on my home router.
For private facing/LAN-only services I just don’t have an entry in the VPS reverse proxy. DNS on the router points everything to my local server, so if at home I access everything directly. To access internal services remotely requires VPN (i.e., WireGuard to the VPS).
Works well; I have a tiny free tier VPS but even so, no complaints.
*Yes I know there are no wg clients or servers, only peers, but it plays a server-likr role.
yxp@lemmy.radio 9 hours ago
I’ve been thinking about this setup but it depends on external server after all…
B0rax@feddit.org 9 hours ago
yxp@lemmy.radio 9 hours ago
So it’s basically the same as what startrek.website/u/qjkxbmwvz described above … but with extra security features?
killabeezio@lemmy.zip 8 hours ago
Just use wire guard. This is what tunnels is and this is what tail scale uses
CodingCarpenter@lemmy.ml 8 hours ago
You could use something like tail scale
fristislurper@feddit.nl 8 hours ago
Tailscale is definitely the most frictionless solution. But you will then rely on tailscale instead of cloudflare, so not ideal. You can also host Headscale so you do not have to rely on them either.
yxp@lemmy.radio 8 hours ago
Tailscale is fine, problem is I have to keep my phone connected to the tail network, which drains the battery. I do have a tailscale subnet router running under my network so I can fix things remotely.
Flax_vert@feddit.uk 10 hours ago
I should really move my domains away from CloudFlare…
Fijxu@programming.dev 10 hours ago
T-thanks cloudflare!!!
TabbsTheBat@pawb.social 11 hours ago
Gotta get 1 of our 5 a day in :3
HeerlijkeDrop@thebrainbin.org 7 hours ago
Ah, the famous service that is too big to ever fail, fails again…
cupcakezealot@piefed.blahaj.zone 11 hours ago
maybe it’s a bad idea to put the entirety of the backbone of the internet on one or two private companies.
who@feddit.org 1 hour ago
Not only because it’s a single point of failure, but also because it’s a single point of surveillance.
Cloudflare can read even modify the communications everyone has with sites behind its HTTPS service. And it can monitor people’s browsing through its DNS-over-HTTP service. And it can fingerprint people’s browsers through any of its services that use JavaScript, such as its CAPTCHA-like thing.
TehPers@beehaw.org 10 hours ago
Cloudflare’s dominance is a huge problem exactly for this reason. Having a single point of failure is a huge risk, and it’s surprising that governments don’t view this as being a matter of national security.
As a side note, and not to “well ackshully”, but Cloudflare isn’t a backbone provider. But your point still stands lol.
reksas@sopuli.xyz 8 hours ago
they dont because they have no clue about anything technological.
Marshezezz@lemmy.blahaj.zone 10 hours ago
It’s blows my mind that it’s so obviously bad to do and yet here we are