DNS - The Cloudflare Blog

Dig through SERVFAILs with EDE

May 25, 2022 1:59PM

Now we’re happy to announce we will return more error code types and include additional helpful information to further improve your debugging experience....

How we improved DNS record build speed by more than 4,000x

May 25, 2022 1:59PM

DNS Kafka Speed & Reliability PGQ Product News

How we redesigned our DNS pipeline to significantly improve DNS propagation speed across all zones....

Alex Fattouche

Wildcard proxy for everyone

May 03, 2022 1:58PM

DNS Product News Wildcard Proxy

Today we’re announcing the availability of proxied wildcard DNS records on all plan levels...

Hannes Gerhart

Announcing experimental DDR in 1.1.1.1

March 08, 2022 8:55PM

Research DNS Privacy

The majority of DNS queries on the Internet today are unencrypted. This post describes a new protocol, called Discovery of Designated Resolvers (DDR), that allows clients to upgrade from unencrypted DNS to encrypted DNS when only the IP address of a resolver is known....

Announcing Foundation DNS — Cloudflare’s new premium DNS offering

December 08, 2021 1:58PM

CIO Week DNS Product News Foundation DNS

Today we’re launching Foundation DNS — our new premium DNS offering! Leverage Cloudflare DNS and ensure your domain is always globally available within milliseconds....

Hannes Gerhart

November 13, 2021 2:33PM

Cloudflare blocks an almost 2 Tbps multi-vector DDoS attack

Earlier this week, Cloudflare automatically detected and mitigated a DDoS attack that peaked just below 2 Tbps — the largest we’ve seen to date....

By

Omer Yoachimik

DDoS , Attacks , Mirai , Botnet , DNS

November 12, 2021 12:59PM

Five Great (free!) Ways to Get Started With Cloudflare

New to Cloudflare and don’t know where to begin? Here are five things you can do to get started with Cloudflare right now......

By

John Engates

Cloudflare Zero Trust , DNS , Registrar , Cloudflare Pages , 1.1.1.1

October 08, 2021 4:16PM

What happened on the Internet during the Facebook outage

Today, we're going to show you how the Facebook and affiliate sites downtime affected us, and what we can see in our data....

By

Celso Martinho
, Sabina Zejnilovic

Outage , Facebook , BGP , DNS , Trends

October 04, 2021 10:08PM

Understanding how Facebook disappeared from the Internet

Today at 1651 UTC, we opened an internal incident entitled "Facebook DNS lookup returning SERVFAIL" because we were worried that something was wrong with our DNS resolver 1.1.1.1. But as we were about to post on our public status page we realized something else more serious was going on....

By

Celso Martinho
, Tom Strickx

Trends , Outage , BGP , DNS , Facebook

September 27, 2021 1:59PM

Tackling Email Spoofing and Phishing

Today we’re announcing a new tool to tackle email spoofing and phishing. We’ll warn users about insecure configurations and provide an easy-to-use wizard to create required DNS records....

By

Hannes Gerhart

Birthday Week , DNS , Phishing

March 20, 2021 2:00PM

Moving k8s communication to gRPC

How we use gRPC in combination with Kubernetes to improve the performance and usability of internal APIs....

By

Alex Fattouche

DNS , gRPC , Kubernetes , HTTP2 , QUIC

March 08, 2021 2:00PM

The benefits of serving stale DNS entries when using Consul

We use Consul for service discovery, and we’ve deployed a cluster that spans several of our data centers. We were aware from the start that the DNS query latencies were not great from certain parts of the world that were furthest away from these data centers....

By

André Cruz

DNS , Cache , Unbound

December 08, 2020 12:00PM

Good-bye ESNI, hello ECH!

A deep dive into the Encrypted Client Hello, a standard that encrypts privacy-sensitive parameters sent by the client, as part of the TLS handshake....

By

Christopher Patton

Privacy , Privacy Week , Research , Protocols , DNS

December 08, 2020 12:00PM

Improving DNS Privacy with Oblivious DoH in 1.1.1.1

Oblivious DoH (ODoH) makes secure DNS over HTTPS (DoH) queries into private queries which prevent the leakage of client IP addresses to resolvers. The new proposed ODoH standard addresses this problem and today we are enabling users to use this protocol with 1.1.1.1...

By

Tanya Verma
, Sudheesh Singanamalla

Privacy Week , Research , DNS , DoH , Security