Cloudflare’s global network has officially crossed 500 Tbps of external capacity, enough to route more than 20% of the web and absorb the largest DDoS attacks ever recorded.

Cloudflare's platform is a leading provider of internet security and performance solutions, offering insights into web security, content delivery, and DNS management. Through documentation, blog posts, and webinars, Cloudflare provides insights into protecting websites and applications from cyber threats and improving performance. Developers and IT professionals can learn about CDN (Content Delivery Network), DDoS mitigation, and firewall configurations to secure and accelerate web traffic.

Cloudflare

Cloudflare has crossed 500 Tbps of external network capacity across 330+ cities in 125+ countries, marking 16 years of growth from a single transit provider in 2010. The post details the technical architecture behind autonomous DDoS mitigation using XDP, eBPF, and a distributed denial-of-service daemon (dosd) that propagates mitigation rules globally within seconds without human intervention — demonstrated by absorbing a 31.4 Tbps attack in 2025. It also covers BGP security via RPKI and the emerging ASPA standard, the evolution from CDN to a full developer platform (Workers, KV, Durable Objects, Containers), and the growing challenge of distinguishing AI crawlers from attack traffic using TLS fingerprinting and behavioral analysis.

500 Tbps of capacity: 16 years of scaling our global network

When the network became the security layer

Forward-looking protocols: IPv6, RPKI, ASPA