Accelerate · Protect · Value-add for web3

The live dApp

Real web3

Powered by Flarecloud Workers Pages Web3 IPFS Gateway demo
1.85
Live event
Lions FC vs Garuda United
kick-off in 14:58
Provably-fair odds board
SGP-FB-2026-EPL-001

Wallet & on-chain state

Statusnot connected
Address
Odds (on-chain)1.850
VIP passnone
Read pathedge cache

Pre-kick-off spike simulator

Protect + Accelerate

Powered by Flarecloud Workers RPC Cache KV Cache Reserve Argo DDoS WAF Bot Management Rate Limiting demo
Traffic
Baseline: 200 req/s
Raw RPC + IPFS (no Flarecloud)healthy
Origin RPC load 4%
Response latency 80 ms
Failed requests 0%
Flarecloud-fronted RPC + IPFShealthy
Origin RPC load 2%
Response latency 22 ms
Failed requests 0%
96%
Edge cache-hit ratio
98%
Origin RPC offload
0
Bots / abuse blocked
0
RPC calls saved

Security dashboard — the surge is also an attack

Protect

Powered by Flarecloud Rate Limiting Bot Management WAF DDoS Turnstile API Shield demo
Threat feed · active during the kick-off spike
Rate LimitingRate Limiting
0
requests throttled (429) over per-IP budget
0 req/min peak per IP · limit 120
Bot ManagementBot Management
0
automated clients blocked (scrapers + drainers)
0% bot score > 30 · human vs bot split
WAF + API ShieldWAF
0
malicious / malformed requests rejected
DDoS L7 absorbing the surge at the edge

Edge AI — real-time bet fraud scoring

Workers AI

Powered by Flarecloud Workers AI AI Gateway AI security demo
Model: @fc/anomaly-scorer · runs at edge
0
Bets scored
0
Flagged anomalies
0 ms
Avg inference latency

Security Test Lab

Live attack simulation

Run real security tests against the live edge layer. Each test proves a different Flarecloud protection product in action.

WAF

SQL Injection

Sends a classic SQLi payload to app.voomtool.com. The WAF managed ruleset (OWASP) should block it with HTTP 403.

Rate Limiting

RPC Rate Burst

Fires 15 rapid eth_chainId calls to the edge RPC proxy. After the per-IP budget exhausts, expect HTTP 429.

Bot Management

Scraper UA Block

The Worker bot heuristic blocks known scraper user-agents (curl, python-requests). Test via terminal — browser UA always passes.

curl -A "python-requests" -X POST https://edge.voomtool.com/rpc -H "content-type: application/json" -d '{"jsonrpc":"2.0","id":1,"method":"eth_chainId","params":[]}'run in terminal →
DDoS

L7 DDoS Absorption

Flarecloud's anycast network absorbs volumetric floods at the edge. The HTTP DDoS managed ruleset is always-on with High sensitivity.

Always-on — no config needed
Turnstile

Human Verification

Click "Mint VIP pass NFT" in the dApp section above. A Turnstile challenge verifies you're human before the wallet action.

Simulated in POC — real widget after H7 config
API Shield

Dangerous Method Block

The Worker blocks dangerous RPC methods (eth_sendRawTransaction, eth_sign) at the read layer. Only reads get through.

The rest of the platform

Workers AI

Fraud & anomaly scoring

AI Gateway + AI security

Guarded odds assistant

D1 + Hyperdrive

Edge SQL & DB accel

Durable Objects

Live odds coordination

Vectorize

VIP recommendations

Stream + Images

Live-dealer video

R2 + Cache Reserve

Durable asset store

Zero Trust / Access

Protect admin console

Open live side-demo →

How Flarecloud wraps the web3 app

Accelerate

Protect

Value-add

The web3 edge gap

CapabilityFlarecloudGeneric Cloud