At the end of his post, he noted, "Not only that, but your ISP might not have some of the best routes in their BGP tables, and Cloudflare, one of the largest networks in the world does. So you benefit from better routing, which ultimately gives you a better internet experience."
100% correct. I'd like to expand that, with my own take on it, and some supporting evidence.
For me, the VPN and privacy aspect is real, and welcome, but simply having my traffic on Cloudflare's network, is the BIG HUGE prize. Their network is SO well-managed, robust, and so ... everywhere. Remember their 1.1.1.1 public DNS goal? "Less than 10ms from you, wherever you are." That is some spectacular reach, which WARP benefits from. You get on their network very close to you, and you get off, very close to your destination. Simply being on it, makes your internet experience... Well, let's just say I don't know how folks manage without it. I've turned it off a few times to test, and it.is.ugly, folks. Evidence.
First, a short news recap:
"Cloudflare recently mitigated the largest distributed denial-of-service (DDoS) attack ever recorded, reaching a peak of 3.8 terabits per second. The attack, which lasted only 65 seconds, was launched using UDP packets from a botnet of compromised ASUS routers exploiting a critical vulnerability. Censys indicates that over 157,000 ASUS routers were potentially affected by the vulnerability." Take-aways.
1. 3.8 terabits per sec. That is melt-the-wires stuff, right there.
2. 65 seconds. Look at the graph. Look at the sharp beginning/end. Switch on, switch off. This was a test.
3. The timing co-ordination required to achieve this, proves a spectacular Command and Control apparatus.
4. With only a max pool of ~160k devices which could have participated. We'll assume less than that.
5. If you have an Asus router, you have homework. Away you go. We'll wait.
To my original point.
Cloudfare mitigated this. And the internet didn't stop. That means, on their inbound side, they were able to CARRY that traffic, and NOT saturate their capacity. Saturation is how a DDOS attack works. The attacker uses all the bandwidth available, and denies you access to the service.
They bit the bullet, carried that traffic, and managed it (dropped it in the bin).
And the internet didn't stop.
We, Rocking, don't earn a cent on this, but please, go get WARP folks. Start with the free tier.