Jamie Lord

Solution Architect at CDS, using Azure and C# to build awesome projects

8 minute read

The computing landscape is undergoing a subtle but profound shift. As organisations embrace distributed architectures and global deployments, the traditional boundaries between containers, serverless functions, and edge computing are blurring. Cloudflare’s forthcoming Containers offering, set to launch in June 2025, represents not merely an addition to their Developer Platform product suite, but a fundamental reimagining of how container-based workloads can operate at global scale. What makes this approach particularly interesting is how it challenges conventional thinking about infrastructure design patterns while enabling new technical capabilities that were previously difficult to achieve with existing platforms.

The Convergence of Edge and Container Paradigms

For years, we’ve treated containers and edge computing as distinct approaches with different use cases and architectural implications. Containers offered flexibility, portability, and a familiar development model but typically required complex orchestration and regional deployment considerations. Edge functions provided global distribution and seamless scaling but with significant constraints around runtime, languages, and execution models.

Cloudflare’s approach bridges this gap by leveraging their existing Durable Objects architecture to provide containers that are both globally distributed and tightly integrated with their edge network. This integration allows workloads to run at the optimal location without the traditional complexity of multi-regional container deployments.

What’s particularly noteworthy is the underlying architecture. Rather than attempting to retrofit Kubernetes or another existing container orchestration system to work at the edge, Cloudflare has built their container platform atop their Durable Objects system. This provides not just execution environments, but programmable sidecars that can handle complex lifecycle management, proxying, and state persistence.

Core Technical Architecture

Cloudflare Containers appears to offer four fundamental capabilities:

  1. On-demand global container instantiation - Containers can be created on-demand in any Cloudflare location based on incoming request patterns, with no pre-configuration of regions required.

  2. Worker-based routing and orchestration - Workers act as a programmable layer for routing, authentication, and container lifecycle management.

  3. Programmable container sidecars - Each container instance is paired with a Durable Object that can monitor, manage, and interact with the container.

  4. Integration with the broader Cloudflare platform - Containers work alongside Workers, R2 storage, Workflows, and other Cloudflare services.

Deeper Considerations and Architectural Implications

The approach Cloudflare has taken raises interesting questions about how we design distributed systems. The traditional pattern has been to define orchestration configurations statically—Kubernetes manifests, Terraform configurations, or cloud-specific templates that describe the desired end state. What Cloudflare proposes is essentially dynamic, programmable orchestration where the routing, scaling, and lifecycle management are handled by code rather than configuration.

This represents a fundamental philosophical shift. Instead of static declaration of infrastructure, we move toward programmatic control of resources as a first-class concept. The implications for system design are significant:

  1. Dynamic, conditional infrastructure - Rather than pre-defining all container instances and routing rules, applications can instantiate infrastructure on-demand based on runtime conditions.

  2. Unified programming model - The same JavaScript/TypeScript code that handles request routing can also manage container lifecycle and orchestration.

  3. Fine-grained control over state - The tight coupling between Durable Objects and Containers enables sophisticated state management patterns that would be complex to implement in traditional container platforms.

  4. Global by default - The system’s architecture assumes global distribution rather than treating it as an advanced use case requiring special configuration.

This approach challenges both the Kubernetes-centric model of container orchestration and the “serverless or containers” dichotomy that has dominated cloud architecture discussions. It posits that programmable infrastructure—where code controls routing, scaling, and lifecycle—might be more adaptable than declarative configurations for certain workloads.

Implementation Considerations

When considering how to leverage this type of architecture, several technical approaches warrant consideration:

State Management Patterns

The integration with Durable Objects creates interesting possibilities for state management. Unlike traditional stateful containers that must either manage their own persistence or rely on external services, Cloudflare Containers appear to allow a hybrid approach where the sidecar Durable Object can persist state while the container itself remains relatively stateless.

This pattern could be particularly valuable for workloads that need persistence but don’t warrant a full database deployment. The examples in Cloudflare’s documentation demonstrate persisting state between container instances using the Durable Object’s storage:

async onContainerExit() {
  const response = await this.ctx.container
    .getTcpPort(8080)
    .fetch('http://container/state');
  const newState = await response.text();
  this.ctx.storage.sql.exec('UPDATE state SET value = ?', newState);
}

This model offers a middle ground between fully stateful and fully stateless architectures, potentially simplifying application design while maintaining scalability.

Service Mesh Without the Complexity

Traditional service meshes require complex sidecars, control planes, and extensive configuration. The Cloudflare approach creates service mesh capabilities through the Workers platform and container integration. By routing all traffic through Workers, you gain essential service mesh features such as encryption, authentication, and observability without the operational complexity.

This approach offers a compelling alternative to traditional service mesh implementations like Istio or Linkerd, particularly for applications that can operate within Cloudflare’s ecosystem. The simplified architecture eliminates many of the operational challenges that typically accompany service mesh deployments while delivering similar benefits.

Custom Orchestration

Perhaps the most compelling aspect is the ability to implement custom orchestration logic in Workers code. Rather than being constrained by the built-in orchestration capabilities of a platform, developers can implement precisely the scheduling, scaling, and routing logic their application requires:

class ContainerManager extends DurableObject {
  scale(region, instanceCount) {
    for (let i = 0; i < instanceCount; i++) {
      const containerId = env.CONTAINER.idFromName(`instance-${region}-${i}`);
      // spawns a new container with a location hint
      await env.CONTAINER.get(containerId, { locationHint: region }).start();
    }
  }

  async setHealthy(containerId, isHealthy) {
    await this.ctx.storage.put(containerId, isHealthy);
  }
}

This provides a level of flexibility that’s difficult to achieve with traditional container platforms without substantial custom development.

Integration with Modern Architectural Patterns

The integration with other Cloudflare services enables powerful architectural approaches that deserve consideration.

AI Workflow Orchestration Models

The combination of Containers, Workers, and Workflows creates a particularly compelling foundation for AI-driven systems. Workers can handle request routing and lightweight transformations, Containers can run more intensive processing or model inference, and Workflows can coordinate the overall process with durability guarantees. This unified platform eliminates many of the integration challenges that typically complicate AI system development.

Consider a typical large language model application. The request handling and prompt engineering can occur in lightweight Workers, the actual model inference in Containers with appropriate CPU and memory resources, and the entire process coordinated by Workflows to ensure reliability.

Progressive Edge Computing Architecture

Cloudflare’s approach enables a more nuanced strategy than the typical all-or-nothing approach to edge computing. This model supports an architecture where the edge layer (Workers) handles routing, authentication, and caching, while Containers provide more substantial compute capabilities where needed. This progressive approach allows organisations to optimise each component of their application for the most appropriate execution environment.

Secure Developer Platform Foundation

The programmable nature of the platform creates an excellent foundation for building developer platforms where end-users need to run arbitrary code. The example of running AI-generated code in isolated containers demonstrates this pattern, but the applications extend to IDEs, coding platforms, and educational systems. The built-in isolation provides security boundaries without requiring complex custom development.

Practical Evaluation

While the technical capabilities are impressive, practical considerations should inform adoption decisions.

Vendor Integration Considerations
The tight integration with Cloudflare’s platform creates potential lock-in concerns, particularly for sophisticated implementations that leverage the platform’s unique features. Organisations should carefully evaluate this against the benefits of deep integration with Cloudflare’s global network.

Operational Readiness Assessment
As a new service entering beta in June 2025, questions naturally arise about observability tooling, debugging capabilities, and overall production readiness for critical workloads. Early adopters should plan for appropriate testing and evaluation periods.

Cost Model Analysis
The pricing model differs significantly from traditional container platforms, charging for active running time rather than allocated capacity. This model could be particularly advantageous for bursty workloads but requires careful analysis and potentially new approaches to cost optimisation.

Ecosystem Development
Unlike Kubernetes with its vast ecosystem of tools and extensions, Cloudflare’s container platform will initially have a more limited set of integrations and community resources. Organisations should assess whether the available tooling meets their operational requirements.

Conclusion and The Path Forward

Cloudflare’s Containers offering represents a meaningful evolution in distributed computing architecture. By tightly integrating containers with their global edge network and providing programmable orchestration through Workers, they’ve created a model that challenges traditional divisions between edge functions and container-based architectures.

For architects and developers, this approach opens significant possibilities for globally distributed applications that leverage both lightweight edge functions and more substantial container workloads. The programmable nature of the platform enables custom orchestration patterns that would be difficult—if not impossible—to implement on traditional container platforms without substantial custom development.

The approach seems particularly well-suited for several key use cases:

Global Low-Latency Applications
Applications with worldwide user bases that require consistent performance across regions without complex multi-region deployment configurations.

Variable Workload Patterns
Systems with unpredictable or bursty demand that can benefit from true scaling-to-zero capabilities and consumption-based pricing.

Hybrid Compute Requirements
Applications needing both lightweight edge functions and more substantial container-based processing within a unified programming model.

Secure Execution Environments
Platforms running untrusted or user-generated code that require strong isolation without the complexity of building custom sandboxing.

As the June 2025 beta approaches, forward-thinking organisations should consider how this architecture might influence not just their implementation decisions, but their broader approach to distributed system design. The convergence of edge computing, serverless, and containers continues to reshape the infrastructure landscape, challenging long-held assumptions about how we build and deploy global applications.

Cloudflare’s approach offers a thought-provoking contribution to this evolution—one that suggests the future of cloud computing may be less about static infrastructure declarations and more about programmable, dynamic infrastructure that adapts to changing conditions in real-time.

You May Also Enjoy

What is Cloudflare Developer Platform?

3 minute read

If you’ve heard about Cloudflare’s Developer Platform but aren’t quite sure what it offers, this guide aims to break it down in simple terms without diving t...

Thoughts on the Fujifilm GFX100RF

6 minute read

In a world where camera manufacturers battle in technical one-upmanship, Fujifilm has made a curious move. The new GFX100RF presents something genuinely diff...