Wildcard proxy for everyone
May 03, 2022 12:58 PM
Today we’re announcing the availability of proxied wildcard DNS records on all plan levels...
Announcing experimental DDR in 1.1.1.1
March 08, 2022 8:55 PM
The majority of DNS queries on the Internet today are unencrypted. This post describes a new protocol, called Discovery of Designated Resolvers (DDR), that allows clients to upgrade from unencrypted DNS to encrypted DNS when only the IP address of a resolver is known. ...
Announcing Foundation DNS — Cloudflare’s new premium DNS offering
December 08, 2021 1:58 PM
Today we’re launching Foundation DNS — our new premium DNS offering! Leverage Cloudflare DNS and ensure your domain is always globally available within milliseconds....
Five Great (free!) Ways to Get Started With Cloudflare
November 12, 2021 12:59 PM
New to Cloudflare and don’t know where to begin? Here are five things you can do to get started with Cloudflare right now......
MORE POSTS
October 04, 2021 9:08 PM
Understanding how Facebook disappeared from the Internet
Today at 1651 UTC, we opened an internal incident entitled "Facebook DNS lookup returning SERVFAIL" because we were worried that something was wrong with our DNS resolver 1.1.1.1. But as we were about to post on our public status page we realized something else more serious was ...
- By
September 27, 2021 12:59 PM
Tackling Email Spoofing and Phishing
Today we’re announcing a new tool to tackle email spoofing and phishing. We’ll warn users about insecure configurations and provide an easy-to-use wizard to create required DNS records....
- By
March 20, 2021 2:00 PM
Moving k8s communication to gRPC
How we use gRPC in combination with Kubernetes to improve the performance and usability of internal APIs....
- By
March 08, 2021 2:00 PM
The benefits of serving stale DNS entries when using Consul
We use Consul for service discovery, and we’ve deployed a cluster that spans several of our data centers. We were aware from the start that the DNS query latencies were not great from certain parts of the world that were furthest away from these data centers....
- By
December 08, 2020 12:00 PM
Improving DNS Privacy with Oblivious DoH in 1.1.1.1
Oblivious DoH (ODoH) makes secure DNS over HTTPS (DoH) queries into private queries which prevent the leakage of client IP addresses to resolvers. The new proposed ODoH standard addresses this problem and today we are enabling users to use this protocol with 1.1.1.1...
- By
December 08, 2020 12:00 PM
Helping build the next generation of privacy-preserving protocols
Today, we’re making several announcements around improving Internet protocols with respect to something important to our customers and Internet users worldwide: privacy....
- By
December 08, 2020 12:00 PM
Good-bye ESNI, hello ECH!
A deep dive into the Encrypted Client Hello, a standard that encrypts privacy-sensitive parameters sent by the client, as part of the TLS handshake....
- By
November 30, 2020 1:14 PM
Improving the Resiliency of Our Infrastructure DNS Zone
We've improved the resiliency and management of our infrastructure DNS zone. In this post, we guide you through some of the "whats", "whys" and "hows" we encountered along the way. ...
- By
November 13, 2020 7:06 PM
SAD DNS Explained
Researchers from UC Riverside and Tsinghua University found a new way to revive a decade-old DNS cache poisoning attack. Read our deep dive into how the SAD DNS attack on DNS resolvers works, how we protect against this attack in 1.1.1.1, and what the future holds for DNS cache p...
- By