Cloudflare Magic Transit

IP transit with built-in DDoS protection, network firewall, and traffic acceleration for on-premise networks

Partners / Technology Partners / Cloudflare / Cloudflare Magic Transit >

Cloudflare protects and accelerates over 19 million Internet properties. Extend the same benefits to your on-premise and data center networks.

Cloudflare protects and accelerates over 19 million Internet properties. Extend the same benefits to your on-premise and data center networks.

Introducing Cloudflare Magic Transit

Magic Transit is a software-defined networking product that offers IP transit with built-in DDoS protection, next-gen firewall, traffic acceleration and more for your on-premise and data center networks from a single, easy-to-use interface.

  • Move your network perimeter hardware to the cloud

    Provision virtual network functions on the fly. These include the full Cloudflare product suite: DDoS protection with over 30 Tbps of network capacity and near-instant mitigation, built-in next-gen firewall, traffic acceleration, and much more.

  • Connect to the Cloudflare global network

    Get unparalleled connectivity to your customers over Cloudflare’s global anycast network. Our security, performance, and reliability functions are delivered from a physical presence in 193 cities in 90 countries. This means threats are mitigated close to where they originate, not in your data center.

  • Drive down your Total Cost of Ownership (TCO)

    Get operational agility with reduced capital expenditure. Replace on-premise hardware with network functions delivered and billed as a service.

The next step in Internet infrastructure

Cloudflare Magic Transit protects entire IP subnets from DDoS attacks, while also accelerating network traffic. It uses Cloudflare’s global network to mitigate attacks, employing two fundamental networking protocols, BGP and GRE, for routing and encapsulation.

  • Connect: Using Border Gateway Protocol (BGP) route announcements to the Internet, and Cloudflare’s anycast network, customer traffic is ingested at a Cloudflare data center closest to the source.
  • Protect and process: All customer traffic is inspected for attacks. Advanced and automated mitigation techniques are applied immediately upon detecting an attack. Additional functions such as, load balancing, content caching and serverless compute are delivered as a service.
  • Accelerate: Clean traffic is routed over Cloudflare’s network for optimal latency and throughput and can be handedoff over GRE tunnels, private network interconnects (PNI) or other forms or peering to the origin network.

Egress traffic from the customer network is sent directly to the client using Direct Server Return (DSR).

The Cloudflare global network

Cloudflare delivers DDoS mitigation using our entire network. This network has a capacity of over 30 Tbps and spans more than 193 cities in 90 countries. Our network allows us to be within 100ms of 93% of the Internet-connected population globally.

This is especially important for latency-sensitive applications such as Voice of IP (VoIP) and custom gaming protocols.

Ultra-low Time to Mitigate (TTM)

With a heritage in DDoS mitigation and a vast library of known attacks, malicious traffic is identified at a Cloudflare data center closest to the source within seconds. Automatic mitigation techniques are applied immediately and most malicious traffic is blocked in less than 10 seconds.

Pick your network function

Cloudflare Magic Transit comes integrated with our best-in-class network firewall, allowing you to configure granular allow/deny rules for IP ranges and propagate changes in seconds. Want application level firewalling? Configure optional TLS termination and start inspecting payloads. Want a load balancer? You got it. Want to write a serverless Cloudflare Worker to modify traffic on the fly? You can do that, too.

Magic Transit comes natively integrated with all of Cloudflare’s L4 and L7 products.

Pick your network function

More than 1 billion unique IP addresses pass through Cloudflare’s network every day. With every bit we move, our network gets smarter and faster.

When integrated with Argo Smart Routing, Cloudflare Magic Transit will deliver clean traffic back to your network using the fastest, most reliable links in real-time.

Key Features

  • Over 30 Tbps of network capacity
  • Sub-second threat detection
  • Mitigate most attacks in under 10 seconds
  • Integrate via BGP routing and GRE encapsulation
  • Native integration with L7 services (CDN, WAF, Bot Management, etc.)
  • Data centers in over 193 cities across 92 countries
  • Always-on and on-demand options
  • 24×7 SOC
  • Support for all IP services (TCP, UDP, IPSec, VoIP, custom protocols)
  • Dashboard and API access
  • Advanced analytics

Download Request for
Cloudflare Magic Transit Datasheet

Please enter your details to sign up to our mailing list and the download will be emailed to you shortly.

Download Request for
Votiro Secure File Gateway for Email

Please enter your details to sign up to our mailing list and the download will be emailed to you shortly.

Our website uses cookies to provide a better user experience, improve our services and our website’s functionality. By continuing to use our website, you consent to the use of cookies and agree to our Privacy Policy and Terms of Service.