Zone security, SSL, and Page Rules

For each zone you manage, Turtini exposes the most common Cloudflare security, SSL, and performance toggles so you don't need to bounce between products.

SSL / TLS:
• Mode — Off, Flexible, Full, or Full (strict). Full (strict) is recommended for any site with a valid origin certificate.
• Always Use HTTPS — redirects http:// to https:// at Cloudflare's edge
• Minimum TLS Version — 1.0 through 1.3. Modern browsers and PCI compliance require 1.2+.

Security:
• Security Level — Off, Essentially Off, Low, Medium, High, I'm Under Attack. Controls how aggressively Cloudflare challenges suspicious visitors.
• Browser Integrity Check — blocks requests with suspicious user agents and missing headers
• Email Obfuscation — rewrites email addresses in HTML to defeat scrapers
• Bot Fight Mode — toggle visible when your plan supports it; blocks known bots at the edge

Performance:
• Caching — controls Cloudflare's static asset caching
• Brotli — serves compressed responses when the client supports them
• Development Mode — temporarily bypass edge caching for three hours; useful when iterating on a site

Page Rules:
Create URL-pattern rules to override Cloudflare behavior for a specific path. Common use cases: forwarding apex-to-www, cache-everything for a marketing sub-path, overriding SSL mode for a staging subdomain. Rules run in priority order (top to bottom). Each zone gets 3 free Page Rules; upgrade plans include more.

Changes save immediately and propagate globally within a few seconds.