Use Cloudflare Network Interconnect
Cloudflare generates Letters of Authorization (LOAs) for your CNI cross-connects and sends them to your organization.
You order the cross-connects that you want to use with CNI. You can use any of the following:
- Private network interconnects (PNI) are available at any of our .
- Virtual private network interconnects (vPNI) allow you to easily connect with Cloudflare at any of our interconnection platform locations.
- Internet exchange point (IXP) interconnects allow you to establish a link with Cloudflare at any of the in which we participate.
You send Cloudflare confirmation when the cross-connects are in place.
Cloudflare makes routing configuration changes and validates BGP sessions and GRE tunnel routes.
Each of these steps can take 2–7 business days.
When working with Magic Transit and CNI, observe these guidelines:
Cloudflare Network Interconnect does not support 1500 byte packets, so you still need to implement MSS clamping.
You must set the MSS clamp size to 1332 bytes to accommodate the additional overhead from the Foo-over-UDP (FOU) protocol and IPv6. These are used to backhaul data from the colocation facility where traffic is ingested (close to the end user) to the facility with the CNI link.
Cloudflare Network Interconnect does not process outgoing traffic from your data centers. Egress traffic returns to end users through direct server return (DSR), not through Cloudflare. For this reason, CNI is not a replacement for your existing transit providers.