LogoLogo
  • Welcome to Firefly Documentation
  • Introduction
    • What is Firefly?
    • Who is Firefly for?
    • Why use Firefly?
    • Terminology (Glossary)
  • Key Features
    • Infrastructure-as-Code Automation
    • Cloud Asset Inventory
    • Drift Detection & Remediation
    • Policy-as-Code for Compliance & Governance
    • Cost Visibility & Optimization
    • AI Assistant
    • ChatOps Integration
  • Getting Started
    • Account Setup & Onboarding
    • Connecting Cloud Accounts
    • UI Walkthrough & Navigation
    • First Steps in Firefly
  • Detailed Guides
    • Dashboard Overview
    • Cloud Asset Inventory
      • Remediating Drifts
      • Deleting Assets
      • Creating IaC-Ignore Rules
      • Creating Exclude-Drift Rules
    • Policy & Governance
      • Creating Policy-as-Code Governance Rules
      • Remediating Policy Violations
    • Workflows & Guardrails
      • Creating Workflows
      • Creating Guardrail Rules
    • Codification
    • Self-Service
    • IaC Explorer
    • Event Center
    • Backup and Disaster Recovery
    • Notifications
    • User Management
    • SSO Configuration
  • Integrations
    • Integrations Overview
    • Integrating Data Sources
      • AWS
      • Azure
      • Google Cloud
      • Kubernetes
      • Akamai
      • Datadog
      • New Relic
      • Okta
      • GitHub
      • Cloudflare
      • NS1
      • PagerDuty
      • MongoDB Atlas
      • HashiCorp Vault
    • Integrating IaC Remote State
      • Terraform Cloud
      • Google Cloud Storage
      • env0
      • HashiCorp Consul
    • Integrating Version Control
      • GitHub
      • GitLab
      • Azure DevOps
      • CodeCommit
      • Bitbucket
    • Integrating Notifications
      • Slack
      • Microsoft Teams
      • PagerDuty
      • Opsgenie
      • Torq
      • Webex
      • Google Chat
      • Webhook
    • Integrating Project Management
      • Jira
      • ServiceNow
    • Integrating Workflows with CI/CD
    • Integrating Backstage
    • Integrating MCP
  • Use Cases & Best Practices
    • Cloud Governance & Visibility
    • Cost Optimization Strategies
    • Compliance and Security Best Practices
    • Infrastructure Automation & Self-Service
    • Best Practices and Implementation Tips
  • Analytics & Reporting
    • Analytics Dashboard Overview
    • Using Analytics for Improvement
    • Exporting and Sharing Reports
    • Analytics Security and Privacy
  • Code Snippets & Examples
    • Terraform Snippet for an AWS EC2 Instance (Codified via Firefly)
    • Example Rego Policy (OPA) for a Custom Rule
    • GitHub Actions Workflow YAML for Firefly Integration
    • JSON Output Example: Exporting Inventory
  • Troubleshooting & FAQs
    • Common Issues and Solutions
    • FAQs
  • General Information
    • Firefly API
      • Authentication
      • Inventory
      • Codification
      • Workflows
      • Self-Service
      • Policy & Governance
      • IaC Explorer
      • Event Center
      • Backup & Disaster Recovery
      • Notifications
      • Integrations
      • Identity & Access Management
    • Security & Compliance
    • Pricing Tiers & Add-ons
    • Contacting Support
Powered by GitBook
On this page
  • Overview
  • Prerequisites
  • Setup Procedure
  • Configuration Details
  • Best Practices
  • Troubleshooting

Was this helpful?

  1. Integrations
  2. Integrating Data Sources

Cloudflare

PreviousGitHubNextNS1

Last updated 1 month ago

Was this helpful?

Overview

Firefly can ingest DNS and CDN configurations from Cloudflare. Provide your Cloudflare account email and an API token with read permissions to your zones. Firefly will list DNS records or configurations as part of inventory.

Prerequisites

  • A Cloudflare account with administrative access

  • Ability to generate API tokens

  • Access to Cloudflare API endpoints

  • API token with read permissions to your zones

Setup Procedure

  1. Log in to your Cloudflare account.

  2. Create an API token:

    • Visit

    • Select the "Read all resources" template

    • Copy the token

  3. In Firefly:

    • Select Settings > Integrations

    • Select Add New > Cloudflare

    • Enter a descriptive name in the Nickname field

    • Paste the token into the API Token field

    • Select Next

Configuration Details

  • Supports monitoring of:

    • DNS records

    • CDN configurations

    • Zone settings

    • SSL/TLS configurations

  • Regular scanning of Cloudflare assets

  • Integration with Firefly's inventory management

  • Support for policy enforcement on Cloudflare resources

Best Practices

  1. Use a dedicated API token for Firefly integration

  2. Regularly rotate API tokens for security

  3. Monitor API token usage in Cloudflare

  4. Keep track of which Cloudflare assets are being monitored

  5. Review and update policies as needed

  6. Maintain proper access controls in Cloudflare

  7. Ensure API token has minimum required permissions

Troubleshooting

  1. For API token issues:

    • Verify API token permissions

    • Check if the token has expired

    • Ensure the token has the correct access level

    • Verify token has access to required zones

  2. For asset discovery issues:

    • Verify the integration is active in Firefly

    • Check if the API token has access to the required resources

    • Review Firefly integration logs

    • Verify Cloudflare zone configurations

  3. For policy enforcement issues:

    • Verify the asset types are supported

    • Check policy configuration

    • Review Firefly policy logs

    • Ensure Cloudflare resources are properly tagged

Cloudflare API Token Creation