Cloudflare can be configured to work with Discourse, but it’s generally inadvisable to do so.
Is your site at legitimate risk of DDOS, or is this just something you want to enable as a precaution?
You will also need to ensure that the container has been rebuilt after you add the CloudFlare template to your app.yml.
I would recommend running with the proxy disabled, and revisit this in the future.
According to this website, our IP is exposed along with our server provider. Is this an indication that we are under a serious DDoS attack? So, as a precaution, we want to do this.
What are the advantages of disabling performance? Caching and other performance mechanisms are enabled. And if we disable performance and enable the proxy, the website will be very slow.
We are using a very powerful server, but we suspect that it will be very slow if we enable all of this. And what’s the surety that if we disable performance and leave the proxy “on” the website will still run fast?
No. It’s how most web sites work. Unless you run a community that it for some reason likely to be targeted by DDOS attacks, it’s not something to worry about. Discourse has some protections for DOS attacks.
Your web site will work.
Discourse does the optimizations itself, so those that Cloudflare adds (that don’t break your site) don’t help much. And putting it in front of your site will mostly slow it down since all traffic will need to travel from your server to cloudflare and then the end user.