Extending Cloudflare to all your networks
When organizations need to protect their networks, IT departments typically turn to legacy hardware boxes or cloud ‘scrubbing’ providers. But traditional solutions just aren’t designed to fulfill the Internet’s basic needs: security, performance, and reliability.Magic Transit is a network security solution that offers DDoS protection, traffic acceleration, and much more from every Cloudflare data center— for on-premise, cloud-hosted, and hybrid networks.
Move your network perimeter hardware to the cloud
Provision virtual network services on the fly: DDoS protection with over 172 Tbps of network capacity and near-instant mitigation, next-gen firewall, traffic acceleration, and much more.
Connect to the Cloudflare global network
Our security, performance, and reliability functions are delivered from a physical presence in 275 cities across over 100 countries. This means threats are mitigated close to where they originate, not in your data center.
Drive down your Total Cost of Ownership (TCO)
Get operational agility with reduced capital expenditure. Replace on-premise hardware with network functions delivered and billed as a service.
Cloudflare Magic Transit protects entire IP subnets from DDoS attacks, while also accelerating network traffic. It uses Cloudflare’s global network to mitigate attacks, employing standards-based networking protocols, like BGP, GRE, and IPsec, for routing and encapsulation.
All your network assets, whether on-premise or in private or public hosted cloud environments are safeguarded.
Using Border Gateway Protocol (BGP) route announcements to the Internet, and Cloudflare’s anycast network, customer traffic is ingested at a Cloudflare data center closest to the source.
Protect and Process
All customer traffic is inspected for attacks. Advanced and automated mitigation techniques can be applied immediately upon detecting an attack. Additional functions such as, load balancing, next-gen firewall, content caching and serverless compute are also delivered as a service.
Clean traffic is routed over Cloudflare’s network for optimal latency and throughput and can be handed-off over GRE tunnels, private network interconnects (PNI) or other forms of peering to the customer network.
Cloudflare delivers DDoS mitigation using our entire network. This network has a capacity of over 172 Tbps and spans more than 275 cities in 100 countries. Our network allows us to sit approximately 50 ms from 95% of the Internet-connected population globally. This is especially important for latency-sensitive applications such as Voice over IP (VoIP) and custom gaming protocols.
With a heritage in DDoS mitigation and a vast library of known attacks, malicious traffic is identified at a Cloudflare data center closest to the source within seconds. Automatic mitigation techniques are applied immediately and most malicious traffic is blocked in less than 3 seconds.
Cloudflare Magic Transit comes integrated with our best-in-class network firewall, allowing you to configure granular allow/deny rules for IP ranges and propagate changes in seconds. Want application level firewalling? Configure optional TLS termination and start inspecting payloads. Want a load balancer? You got it. Want to write a serverless Cloudflare Worker to modify traffic on the fly? You can do that, too.
Magic Transit comes natively integrated with all of Cloudflare’s L4 and L7 products.
Cloudflare's network serves 39 million HTTP requests per second on average. With every bit we move, the network gets smarter and faster.
When integrated with Argo Smart Routing, Cloudflare Magic Transit will deliver clean traffic back to your network using the fastest, most reliable links in real-time.
Over 172 Tbps of network capacity
Mitigate most attacks in under 3 seconds
Sub-second threat detection
Integrate via BGP routing and GRE encapsulation
Native integration with L7 services (CDN, WAF, Bot Management, etc.)
Always-on and on-demand options
Support for all IP services (TCP, UDP, IPSec, VoIP, custom protocols)
Magic Transit is just one part of the Cloudflare network security and solutions family. Cloudflare offers built-in services — like DDoS mitigation, branch connectivity, software-defined Zero-Trust functionality, and network firewalling — on a single global network that replaces patchwork appliances. Connect, secure, and accelerate your corporate network with Cloudflare.
Request Magic Transit demo
Отправляя эту форму, вы соглашаетесь получать от Cloudflare информацию, связанную с нашей продукцией, мероприятиями и специальными предложениями. Вы можете отказаться от таких сообщений в любое время. Мы никогда не продаем ваши данные и уважаем ваши предпочтения в плане конфиденциальности. Для получения дополнительной информации ознакомьтесь с нашей Политикой конфиденциальности.