Announcement

Collapse
No announcement yet.

Cloudflare Setup

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    Cloudflare Setup

    We are considering setting up a Cloudflare account to utilize the CDN as well as security features -- bots, DDoS, etc. We had a problem last month with bogus customer account creation that is now held in check with reCAPTCHA v 3. Much appreciate the Miva tech support for ironing out the details with that. We use Colossus with about 450 products and about 10-15 GB of data transfer per month. We've done about as much as we can to improve page load speeds and are ready to move to a CDN. After researching the available services, it seems that Cloudflare seems the way to go. Before pulling the trigger, I'd like to ask if anybody has any specific warnings or advice so that this process goes smoothly. I've researched posts on the forum going back a few years.

    I noticed that there were issues with fraud detection using CF with Authorize.net. We use Authorize.net and its fraud filters (had a card verification problem a few months ago that cost a lot of transaction fees). Is this still a problem?

    Should I reach out to Miva support for assistance with the installation or wait to see if I run into any problems?

    Any input would be appreciated...
    Tags: None
    #2
    Yes on the authorize.net still being a problem. The issue is Cloudflare has mandatory IPv6 addressing enabled, and Authorize.net's velocity, fraud, and any other filter that requires analysis, is broken when the visitor's address is an IPv6 address. If you're mostly using it to stop certain countries or similar, you can always deny or challenge them, but otherwise it will break authorize.net if you need any of those advanced features on.
    David Hubbard
    CIO
    Miva
    [email protected]
    http://www.miva.com

    Comment

      #3
      Originally posted by ILoveHostasaurus View Post
      Yes on the authorize.net still being a problem. The issue is Cloudflare has mandatory IPv6 addressing enabled, and Authorize.net's velocity, fraud, and any other filter that requires analysis, is broken when the visitor's address is an IPv6 address. If you're mostly using it to stop certain countries or similar, you can always deny or challenge them, but otherwise it will break authorize.net if you need any of those advanced features on.
      What if the storeowner isn't using Cloudflare? They are facing a time-out issue and have had a number of orders not completing the round trip back to the store. Right now, I've convinced the store owner to follow Laura's recommendation to disable the 2 filters he has set up but he's 100% convinced it's not going to help (and is asking for recommendations for a new processor). His biggest concern is this just seemed to start up recently (seems to think it's related to switching to Shadows). I've also let the store owner know that support may be slow for a little while (he didn't get any of the notices that were put out)
      Leslie Kirk
      Miva Certified Developer
      Miva Merchant Specialist since 1997
      Previously of Webs Your Way       (aka Leslie Nord leslienord)
      Email me: [email protected]
      www.lesliekirk.com

      Follow me: Twitter | Facebook | FourSquare | Pinterest | Flickr

      Comment

        #4
        I'm not sure how to troubleshoot that via a forum thread, but regardless, I would not recommend authorize.net for any site at this point given the CDN a quarter of the internet uses is incompatible with it and the benefits it provides.
        David Hubbard
        CIO
        Miva
        [email protected]
        http://www.miva.com

        Comment

          #5
          Originally posted by ILoveHostasaurus View Post
          I'm not sure how to troubleshoot that via a forum thread, but regardless, I would not recommend authorize.net for any site at this point given the CDN a quarter of the internet uses is incompatible with it and the benefits it provides.
          Can you make a recommendation for a quick and easy-to-configure solution that can be implemented today? Also, the site is not using any CDN.
          Leslie Kirk
          Miva Certified Developer
          Miva Merchant Specialist since 1997
          Previously of Webs Your Way           (aka Leslie Nord leslienord)
          Email me: [email protected]
          www.lesliekirk.com

          Follow me: Twitter | Facebook | FourSquare | Pinterest | Flickr

          Comment

            #6
            I'm lost here lesliekirk can you shoot me an email about what's going on?

            In the big picture, we fully support Auth.net, but their lack of integration to ipv6 is a real limitation. However it's still one of the 2 most popular payment methods on Miva and what we personally use to charge cards.

            There are very few independent gateways anymore since the business model doesn't make a lot of sense, the obvious alternative is Cybersource which is the other side of the Auth.net coin (they're the same division within Visa but have a modern tech stack).

            I have a hunch that in the long run Visa is going to merge Auth.net into Cybersource, but I suspect that might still be years away and is not a statement of knowledge, just a hunch on what I would do if I was them.
            Thanks,

            Rick Wilson
            CEO
            Miva, Inc.
            [email protected]
            https://www.miva.com

            Comment

            Previous template Next
            Working...
            X