All your talk tracks, cheat sheets, and live demos in one place.
The full breakdown of what a customer gets when moving from Pro + self-serve to Enterprise. BAA, Data Localization, Workers limits, Workers AI, Images, Bot Management, API Shield, Page Shield, WAF, DDoS, SLA, support, commercial terms. Plain-English translations under every Enterprise cell.
OpenSide-by-side comparison of Cloudflare against the field — Akamai, CloudFront, Fastly, Zscaler, Netskope, etc. Pull this up when a prospect drops a competitor's name.
OpenMaster reference of the entire Cloudflare product line — every product, plan tier, industry angle, common objection, and gotcha. The one-page-of-truth for any prospect conversation.
OpenCustomer-facing narrative for Zero Trust Network Access conversations. Discovery questions and the "before/after" story for replacing VPN.
OpenThe narrative arc for a Zero Trust pitch — how to sequence the demo from problem statement to close.
OpenEverything Workers in one place. Dustin's Hub is the live Worker with runnable demos and links. Workers Demo Cheat Sheet is the talk track and click-by-click for the core Workers demo — show a prospect what deploying to the edge actually looks like.
Dynamic isolate spin-up with egress control — the sandbox story. Live Demo is the runnable page with three scenarios (block all, allow-list, credential injection). Cheat Sheet is the 10–15 min talk track for a customer call. Reference is the engineer-facing architecture deep-dive for technical Q&A.
SQLite at the edge. Live Demo queries a pre-seeded database — 5 customer rows ready to go, plus a country filter. D1 Cheat Sheet is the focused D1 talk track. Storage & Compute Cheat Sheet is the combined walkthrough covering R2, KV, D1, DO, Queues, Hyperdrive.
Positioning against Vercel + Supabase stacks. What to say when a prospect is already committed to that pattern and you need to reframe.
OpenUmbrella AppSec demo talk track — WAF, rate limiting, attack score, custom rules. The default demo for "how do you protect our app?"
OpenBot Management talk track — ML-driven scoring, JS challenges, mobile SDK. What to show when a prospect asks about scrapers, credential stuffing, or fake accounts.
OpenTalk track for API Shield — schema validation, JWT validation, mTLS, sequence analytics, endpoint discovery. Critical for anything API-heavy.
OpenCDN and caching demo talk track. Tiered Cache, Cache Reserve, cache rules, and the "origin barely gets touched" story.
OpenFull-length ZTNA demo cheat sheet — Access, Tunnel, WARP, identity providers, policies. The comprehensive version.
OpenAbbreviated ZTNA cheat sheet for the tighter demo slot — 10-15 minute version.
OpenFictional-company ZTNA demo scenario ("SecureAccessCorp"). Use for role-play walkthroughs.
OpenSecure Web Gateway demo talk track — DNS filtering, HTTP filtering, browser isolation. Employee-side web filtering.
OpenStep-by-step SSL for SaaS setup — custom hostname, DNS/CNAME validation, cert provisioning end-to-end.
OpenArchitecture story for SaaS providers onboarding customers' custom domains — custom hostnames, fallback origin, cert issuance/validation. Fictional tenant "Acme."
Open Live DemoHands-on follow-up to the SaaS Architecture page — click through the setup live with the prospect. Fictional tenants Acme / HostingCo.
Open Live DemoFull multi-tenant SaaS platform demo (fictional "HostingCo") — how a platform vendor runs many customer sites on Cloudflare. For platform/hosting prospects who need the whole-fleet view.
Open Live DemoInteractive version of the "330+ cities, 500 Tbps" slide. ~100 real PoPs with city names, regional facts, backbone connections. Hover any dot for details, hover the stats to highlight related cities. Use this when you need to set the scale early in a call.
Open Global MapThe flagship ZTNA page. 6 tabs in narrative order: (1) full SASE platform, (2) 6 connectivity on-ramps animated, (3) what VPN costs you, (4) what Cloudflare delivers, (5) side-by-side, (6) latency math. Includes 90-second talk tracks per tab.
Open All 6 TabsBoth sides of the connectivity story in one view. User side: managed laptop with WARP, contractor browser-only, branch office IPsec. Server side: cloudflared per-server, WARP Connector per-VPC, IPsec/CNI/Magic WAN per-network. "Animate all" plays through all 6.
Open ConnectivityAnimated comparison answering "what's the difference between the CDN/DNS stuff and Zero Trust?" Public site pipeline (DDoS/WAF/Bot/cache) vs internal app pipeline (identity/posture/policy/tunnel). Same network, different jobs. Toggle, animate, or side-by-side.
Open ComparisonWhat an employee actually sees when accessing a protected app. Animated: type URL → IdP → posture check → app loads. Under 5 seconds total. Answers the "is this annoying for my users?" question.
Run User FlowSplit-screen: admin adds contractor (left) → contractor gets email, clicks magic link, enters OTP, app loads (right). Both animate in parallel. Under 60 seconds end-to-end. Auto-expires when project ends.
Run Contractor FlowA contractor with no Cloudflare client gets full SSH (Linux) or RDP (Windows) into internal servers — through a URL only. Two animated modes: simulated terminal and Windows desktop. Live audit log records every command and click.
Run SSH/RDP DemoVisual walkthrough of onboarding EC2, on-prem, or any internal server into Zero Trust. Three patterns side-by-side: cloudflared, Mesh, Magic WAN — with architecture diagrams and install commands.
Open Onboarding FlowSame credential-harvesting attack, three defensive postures: (1) no protection — credentials stolen, (2) Email Security on — quarantined, (3) Email Security + Browser Isolation — keystrokes blocked in remote browser. Toggle, hit Run, watch outcomes change.
Run Phishing DemoVisual world map showing how traffic flows from any region to a US datacenter — with Argo on vs. off. Hop count, latency, and packet loss difference live.
Open Path ComparisonSame query via Hyperdrive (pooled + cached) vs direct connection. See the latency difference live. Race mode streams the gap in real time. Pair with the Storage & Compute Cheat Sheet for the full talk track.
If the primary LLM provider goes down, AI Gateway automatically routes to a fallback. Zero downtime for users.
Fallback DemoSimulated /graphql endpoint enforcing Cloudflare's documented size + depth limits (size > 30, depth > 7). Attack script hits it with 4 payloads (benign / oversized / deeply-nested / both). Returns a real-looking 403 with rule name and matched expression. Real WAF version live at graphql.tarheel.us.
View Endpoint InfoReusable 5-tab pitch page — CNI, Cloudflare Mesh, Magic WAN, Magic Transit, Spectrum. Live wizard walks a prospect through choosing the right on-ramp. No customer-specific info; safe to screen-share.
Open OnboardingThe main cf-demo-app landing (post-consolidation). Custom domain at graphql.tarheel.us with D1, R2, Vectorize, Queues, Hyperdrive, AI, and Worker Loader bindings — "look how many bindings one Worker can have."
Open Demo AppThe Product Cheat Sheet page itself — Pages + Access + Worker (cheatsheet-chatbot) + Workers AI (llama-4-scout-17b) + AI Gateway + Durable Objects (Presence). Demo the whole platform by opening the page.
Open Cheat SheetPlug in seat count, current VPN cost, and bandwidth. See annual savings vs. traditional VPN + endpoint stack live. Designed for the finance-in-the-room question.
Open CalculatorLive counter showing data downloaded from R2 with running egress fee at $0.00 vs. what AWS S3 would have charged. Refreshes as you click around the gallery. Great for the "zero egress" claim.
Open Egress MeterList, upload, and read objects. S3-compatible, zero egress fees. Pair the live demo with the Storage & Compute Cheat Sheet for the full talk track.
Embed text with Workers AI, store in Vectorize, run similarity search. Pair with the Storage & Compute Cheat Sheet for the full talk track.
Producer sends a message; consumer logs it. Watch with wrangler tail. Pair with the Storage & Compute Cheat Sheet for the full talk track.