Unlock advanced Cloudflare features without being a network administrator or developer. Works with any Cloudflare plan (including Free), no Automatic Platform Optimization (APO) subscription needed.
- Cache HTML at network edge
- View/set all Cloudflare settings
- Fixes Cloudflare Flexible SSL redirect loops
- Fixes situation when IPs are coming through as Cloudflare IPs rather than user IPs
- Cloudflare analytics on dashboard
- Purge cache
- View Page rules, Cache rules, Firewall rules, IP Address rules, User Agent rules
- View Zero Trust Network Access setup
- View DMARC statistics
- Included tools: HTTP request trace, IP address details, domain details, WHOIS
Directly cache HTML
App for Cloudflare® can automatically cache your HTML pages in 330+ Cloudflare data centers around the world. "Standard" WordPress caching plugins can’t escape the laws of physics because
information can't travel faster than the speed of light (even if the page is cached, the cache exists on your physical origin server, which can be
over 20,000 km from an end user). Caching content in Cloudflare data centers makes your website faster by putting your website cache closer to end-users (95% of the world's population is within 50ms of a Cloudflare data center).
This is able to be done
without Cloudflare Workers or even a Page Rule (done with a single Cache Rule on Cloudflare's side, and custom code in the plugin).
Manage all Cloudflare settings
All Cloudflare settings can be changed directly within your WordPress admin area.
Includes
Easy config function that will optimally set your Cloudflare zone settings for WordPress.
Fixes Cloudflare Flexible SSL redirect loops
Automatically fixes HTTPS redirect loops when using Cloudflare's Flexible SSL option (traffic between user and Cloudflare is encrypted, but traffic between Cloudflare and origin server is not).
Handles user IP addresses
Automatically handles the situation where your web server is passing Cloudflare IP addresses rather than the IP address of the user making the request.
Network analytics
View network stats for your website directly within your WordPress admin area with a dashboard widget.
View rules & firewall
Quickly review your site's Cloudflare rules and firewall settings from within your WordPress admin area. Includes:
- Page rules
- Cache rules
- Firewall custom rules
- IP address rules
- User agent blocking
DMARC management
Track third parties that are sending email on your behalf (for example an email provider you have authorized like Gmail or Outlook). You can also see unauthorized email senders or spammers sending email on behalf of your domain.
Multisite network support
You have the ability to have a network-wide Cloudflare API token that can be overridden on a per site basis. In the case where a multisite network operator has the site domains in a single Cloudflare account, they can allow the site users to utilize Cloudflare features for their individual site without disclosing the underlying actual API token.
Additionally, a single Pro license for the main network site allows the media from all sites in the network to be stored in the cloud, within a single Cloudflare R2 bucket.
Store media in the cloud [Premium]
Easily and seamlessly store your WordPress media in the cloud with
Cloudflare R2. This allows you to offload resources (both bandwidth and disk space) from your server. The
first 10GB is free, and only costs $0.015 per GB thereafter (ex. if you had 100GB of media, it would cost $1.35 per month to store it in the cloud).
Includes ability to migrate existing media from local filesystem to R2 (or from R2 to local filesystem). Works with individual media, or all media in bulk (includes web-based migration as well as a shell/WP-CLI option).
Automatically convert uploaded JPG or PNG images to WEBP [Premium]
While this was intended for use with R2, it can be used without using R2 if you want.
Protect admin area [Premium]
Utilize
Zero Trust Network Access to authenticate users before they access your WordPress admin area.
Manage rules & firewall [Premium]
The premium version unlocks the ability to manage (create, delete, suspend and unsuspend) Cloudflare rules and firewall definitions. In addition to defining your own rules, you can deploy useful rules with a single click:
- Block traffic from certain countries (or Tor exit nodes widely used by spammers and hackers)
- Block AI scrapers & crawlers (block bots from scraping your content for AI applications like model training)
- Force a challenge before users can register (bot/spammer mitigation)
- Cache static content
- Automatically block the IP address(es) of spammers for a period of time
Backup & restore [Premium]
You have the ability to backup and restore some of your most important Cloudflare configuration settings:
- Zero Trust Access Policies
- Firewall Rules
- Firewall IP Access Rules
- Firewall User Agent Blocking
- Page Rules
- Cache Rules
Backups can be restored to different zones (for example if you had extensive configuration for a zone, you could give another zone the same configuration through a backup restore).
Other features
- API calls are done exclusively through API Tokens (with the minimum required permissions) and not a Global API Key. Global API Keys are an incredibly bad idea from a security standpoint.
- Ability to purge Cloudflare cache from WordPress admin.
- Cached pages are automatically purged when a post/page is edited (just the necessary pages, not all pages). Stale content is not served to users.
- Ability to designate an individual admin user to manage settings (maybe you don't want all admins to have the ability to change things in Cloudflare).
- Ability to use WordPress filters to add your own logic to things (for example maybe you don't want to cache a certain page or post for whatever reason).