Security

Secure your domains before exposing them.

cdn.pizza adds SSL, WAF, rate limiting, tokens and private networks around domains, files and services to reduce risk.

Automatic SSL

Encrypted connections for domains and proxied services.

WAF & rate limit

Application filtering and protection against obvious abuse.

Public status

Service state, POPs and availability information.

Tokens & CLI

Automation with dedicated and controlled access.

Private networks

WireGuard, peers and private origins to reduce public exposure.

Protected actions

Manage domains, files, payments and settings from the account.

Discover cdn.pizza

A practical security layer for sites and web services.

cdn.pizza security focuses on useful daily protections: encryption, application filtering, abuse limiting, controlled access, private networks and visibility over public services.

SSL and WAF

Automatic SSL secures connections while WAF and rate limiting reduce unwanted requests around applications.

Tokens and permissions

Automated actions use dedicated access so scripts and integrations can limit their risk surface.

Private networks

WireGuard profiles and private origins help connect services without exposing everything directly on the public Internet.

Frequently asked questions

Does the WAF replace an application audit?

No. The WAF reduces some noise and obvious attacks, but it does not replace fixing vulnerabilities in the application.

Are HTTPS connections automated?

cdn.pizza highlights automatic SSL to simplify encrypted connections for proxied domains.

Why use private networks?

They let you connect selected services or origins without exposing them unnecessarily to the public.