Cloudflare offers a security feature called "I'm Under Attack!" that helps protect websites during DDoS attacks. A DDoS attack happens when a huge number of requests are sent to a website from many compromised devices, such as computers, phones, routers, or IoT devices. This can overload the server and make the website slow or unavailable.
When "I'm Under Attack!" mode is enabled, visitors see a verification page for about 5 seconds before they can access the website. During this time, Cloudflare checks whether the visitor is a real user or part of the attack traffic.
To pass the verification, visitors must have JavaScript and cookies enabled in their browser. This helps Cloudflare block requests coming from botnets—large networks of infected devices controlled by attackers.
How to enable the "I'm under attack!” feature
Log in to the Cloudflare account: https://dash.cloudflare.com/login
Select the domain that is currently experiencing a DDoS attack. To do so, press the Account home and find the required domain in the Domains window:
In the Quick Actions panel on the right, click the button next to Under Attack Mode to enable the protection:
Depending on the intensity of the attack, it may last from several hours to several days or even weeks. If your website is under a DDoS attack, we recommend keeping the "I'm Under Attack!" mode enabled for at least 24 hours.