Integrations
Cloudflare
DNS management, security rules, and performance optimization
The Cloudflare connector provides 61 actions for managing DNS records, security settings, caching, and CDN configuration.
Setup
Connect via API Token
- Go to Settings → Integrations → Cloudflare
- Click Connect
- In Cloudflare dashboard, go to My Profile → API Tokens
- Create a token with required permissions
- Paste the token in Keva
- Select zones to manage
Required Token Permissions
Zone:DNS:Edit
Zone:Zone Settings:Edit
Zone:Cache Purge:Purge
Zone:Firewall Services:Edit
Zone:Analytics:ReadAvailable Actions (61)
DNS Management
| Action | Description |
|---|---|
| List DNS records | Get all records for a zone |
| Get DNS record | Specific record details |
| Create DNS record | Add A, AAAA, CNAME, etc. |
| Update DNS record | Modify existing record |
| Delete DNS record | Remove a record |
Security
| Action | Description |
|---|---|
| List firewall rules | Get security rules |
| Create firewall rule | Block/allow traffic |
| Get WAF settings | Web app firewall status |
| Update security level | Change protection level |
| List blocked IPs | Get blocked addresses |
| Block IP | Add IP to blocklist |
Caching & Performance
| Action | Description |
|---|---|
| Purge cache | Clear cached content |
| Purge by URL | Clear specific pages |
| Get cache settings | Current cache config |
| Update cache TTL | Change cache duration |
| Enable dev mode | Bypass cache temporarily |
Analytics
| Action | Description |
|---|---|
| Get traffic stats | Requests, bandwidth |
| Get threat analytics | Blocked attacks |
| Get performance data | Load times, cache hits |
Use Cases
DNS Issue
Customer: "Our subdomain app.example.com isn't working"
AI:
1. Calls list_dns_records(example.com)
2. Finds app.example.com pointing to old IP
3. Reports the misconfiguration
4. Offers to update record if authorizedDDoS Attack
Customer: "Site is being hammered with traffic"
AI:
1. Calls get_threat_analytics()
2. Identifies attack pattern from single IP range
3. Creates firewall rule to block range
4. Reports: "Blocked 192.168.x.x/24"Cache Problem
Customer: "Updated our site but old content still shows"
AI:
1. Calls purge_cache(zone_id)
2. Confirms cache cleared
3. Reports: "Cache purged for example.com"Configuration
- Zone access: Which domains AI can manage
- DNS write: Enable/disable record modifications
- Firewall write: Enable/disable security rule changes
- Cache purge: Allow cache clearing operations