Company
Date Published
Author
Mia Malden, Adrien Vasseur
Word count
3165
Language
English
Hacker News points
None

Summary

Cloudflare's Aegis is a product that provides origin protection for customers, allowing them to restrict access to their server using IP addresses. It was launched in March 2023 and allows customers to bring their own IPs (BYOIP) to be used with Aegis. This feature enables customers to have more control over their traffic and reduce the risk of security breaches. Aegis uses a technology called soft-unicasting, which allows it to share a single subnet across many servers, thereby enabling fast, local, and reliable egress from Cloudflare's network. The product also supports connection reuse and coalescence, which can improve performance by reducing the number of connections needed to reach an origin server. Aegis is designed to work with Cloudflare's Zero Trust security model, which aims to verify everything and trust nothing. With the introduction of Aegis analytics, customers will be able to monitor their IP address usage in aggregate, allowing them to optimize their deployment and configure custom alerts based on certain port usage thresholds. Overall, Aegis provides a powerful tool for customers to protect their origins and improve security hygiene.