Magic Transit integration
Magic Transit On Demand customers can use Magic Network Monitoring to analyze their network traffic and detect Distributed Denial of Service (DDoS) attacks while Magic Transit is disabled. If an attack is detected, customers can automatically or manually enable Magic Transit to mitigate DDoS attacks.
Customers can create Magic Network Monitoring rules which will monitor specific IP prefixes for DDoS attacks. When a DDoS attack is detected, Cloudflare will notify you by email, webhook, or PagerDuty with information about the attack. Then, you can automatically activate IP advertisement and enable Magic Transit to protect the targeted IP prefixes from DDoS attacks. This feature is referred to as auto-advertisement, and you can enable it for individual Magic Network Monitoring rules through the dashboard or API.
After Magic Transit is activated and your traffic is flowing through Cloudflare, Cloudflare will block malicious DDoS traffic, and your origin servers will receive only clean network traffic through IPsec or GRE tunnels.
The following diagrams illustrate this process:
Enable IP auto-advertisement to use Magic Network Monitoring rules. You can activate IP auto-advertisement through the dashboard or the API.
To activate IP advertisement through the Cloudflare dashboard, refer to Configure dynamic advertisement.
To activate IP advertisement through the API, refer to the IP Address Management Dynamic Advertisement API.
To create Magic Network Monitoring rules with auto-advertisement, refer to Rule Auto-Advertisement.
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Directory
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- © 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark
-
