Ask HN: How is BunnyCDN DDoS protection VS Cloudflare?
BunnyCDN Smart DNS load balancer solution costs a LOT less than Cloudflare, I would like to use it in front of a couple HAProxy instances that host my API.
I know Cloudflare is pretty well known for it's DDoS protection, but I'm wondering if anybody has experience with BunnyCDN ? Is it ok, good, bad, good enough ?
I don't think I can use both (Use BunnyCDN DNS load balancer pointing to Cloudflare A records) without having two domains. That would probably be the best of both world, but I don't want to buy a second domain if BunnyCDN is good enough.
Thanks !
7 comments
[ 3.1 ms ] story [ 23.8 ms ] threadOtherwise your origin is still public and there are ways to find out and attack it (bypassing Bunny) easily.
Cloudflare also has a WAF that Bunny says is coming soon (doesn’t apply to DNS only).
Bunny DNS is a relatively new product so it’s not as well tested.
And yeah Bunny.net are getting annoying with their "Coming Soon" stuff. S3 API has been "almost ready" since at least 2020, according to one of their Twitter post. It looks like they are way too small to deliver, but I really like them and I hope they will.
This is a common misconception with many providers, they have DDoS protection to ensure that an attack against them won't cause your website/service being unavailable, however, if an attack targets your service, it most likely won't be filtered by their system.
As to layer 7 or other types of attacks, it’s a tough call. You need specialized services. Cloudflare does great for its price. It’s not like the big cloud providers reliably solve this problem either.