[quilnux]

Our organization dropped trust of Cloudflare and all it's IP address assignments a while back. We don't allow any data from their networks, CDNs, or A-DNS's to be received by our network.

It is just not worth dealing with Cloudflare at all in a business network.

[oneplane]

That essentially means that you can't use any services that happen to be hosted behind Cloudflare, like OpenAI/ChatGPT, GitLab, Hubspot and Shopify. And anyone on WARP and about half of iCloud Private Relay requests won't make it to your services.

I suppose it strongly depends on your organisation, but I'm not seeing how this would be a realistic option unless you're very powerful or have a lot of cash to burn on non-core business processes.

[deceptionatd]

They're the CDN in front of ~19% of websites [1] and the DNS provider for ~16% [2]. Doesn't that mean your staff can't access any of those sites?

[1]: https://w3techs.com/technologies/details/cn-cloudflare [2]: https://6sense.com/tech/domain-name-services/cloudflare-dns-...

[tick_tock_tick]

Have you run into any issues yet with Cloudflare customer using their Gateway Zero trust offerings that end up egressing with Cloudflare IPs or how do you plan on handling that as that business grows?

Apple private relay is also fronted by Cloudflare or are actually allowing large amounts of traffic from Clouldflare?