DNS - The Cloudflare Blog (Page 2)

December 08, 2020 12:00PM

Helping build the next generation of privacy-preserving protocols

Privacy Week Encryption Cryptography DNS DoH Authentication Passwords TLS Encrypted SNI Research

Today, we’re making several announcements around improving Internet protocols with respect to something important to our customers and Internet users worldwide: privacy....

Nick Sullivan

December 08, 2020 12:00PM

Good-bye ESNI, hello ECH!

Privacy Privacy Week Research Protocols DNS TLS

A deep dive into the Encrypted Client Hello, a standard that encrypts privacy-sensitive parameters sent by the client, as part of the TLS handshake....

Christopher Patton

November 30, 2020 1:14PM

Improving the Resiliency of Our Infrastructure DNS Zone

DNS Availability OctoDNS

We've improved the resiliency and management of our infrastructure DNS zone. In this post, we guide you through some of the "whats", "whys" and "hows" we encountered along the way....

November 13, 2020 7:06PM

SAD DNS Explained

DNS Security DNS Poisoning Vulnerabilities

Researchers from UC Riverside and Tsinghua University found a new way to revive a decade-old DNS cache poisoning attack. Read our deep dive into how the SAD DNS attack on DNS resolvers works, how we protect against this attack in 1.1.1.1, and what the future holds for DNS cache poisoning attacks....

October 30, 2020 12:00PM

Unwrap the SERVFAIL

DNS Resolver

We recently released a new version of Cloudflare Resolver, which adds a piece of information called “Extended DNS Errors” (EDE) along with the response code under certain circumstances. This will be helpful in tracing DNS resolution errors and figure out what went wrong behind the scenes....

Anbang Wen

October 02, 2020 8:35AM

DNS Flag Day 2020

October 1 is DNS Flag Day, an initiative by the DNS community to make DNS more secure, reliable and robust. This year the focus is on problems around IP fragmentation of DNS packets....

By

Christian Elmerot

DNS , Speed & Reliability

September 15, 2020 12:00PM

Secondary DNS - Deep Dive

The goal of Cloudflare operated Secondary DNS is to allow our customers with custom DNS solutions, be it on-premise or some other DNS provider, to be able to take advantage of Cloudflare's DNS performance and more recently, through Secondary Override, our proxying and security capabilities too....

By

Alex Fattouche

DNS , Growth , Kubernetes , Speed & Reliability , Deep Dive

August 20, 2020 12:00PM

Orange Clouding with Secondary DNS

Secondary DNS Override is a great option for any users that want to take advantage of the Cloudflare network, without transferring all of their zones to Cloudflare DNS as a primary provider....

By

Alex Fattouche

DNS , Product News , Proxying , CNAME

July 30, 2020 4:00PM

Bringing Your Own IPs to Cloudflare (BYOIP)

Today we’re thrilled to announce general availability of Bring Your Own IP (BYOIP) across our Layer 7 products as well as Spectrum and Magic Transit services....

By

Tom Brightbill

Product News , DNS , Magic Transit , Spectrum

May 25, 2020 12:00PM

Making DNS record changes more reliable

DNS is the very first step in accessing any website, API, or pretty much anything on the Internet, which makes it mission-critical to keeping your site up and running. This week, we are launching two significant changes that allow our customers to better maintain and update their DNS records....

By

Dina Kozlov

DNS , Dashboard , Onboarding , Product News , Speed & Reliability

May 25, 2020 12:00PM

Secondary DNS — A faster, more resilient way to serve your DNS records

Starting today, enterprise customers who are entitled to secondary DNS will be able to configure their zone in the Cloudflare Dashboard....

By

Dina Kozlov

DNS , Analytics , Secondary DNS , Product News , Speed & Reliability

April 21, 2020 12:00PM

Deploying Gateway using a Raspberry Pi, DNS over HTTPS and Pi-hole

Like many, I am working remotely and in this post, I describe some of the ways to deploy Cloudflare Gateway directly from your home. Gateway’s DNS filtering protects networks from malware, phishing, ransomware and other security threats....

By

Jason Farber

Cloudflare Gateway , Cloudflare Access , DoH , Raspberry Pi , DNS

April 02, 2020 4:32AM

The Mistake that Caused 1.1.1.3 to Block LGBTQIA+ Sites Today

Today we made a mistake. The mistake caused a number of LGBTQIA+ sites to inadvertently be blocked by the new 1.1.1.1 for Families service. I wanted to walk through what happened, why, and what we've done to fix it....

By

Matthew Prince

1.1.1.1 , DNS , Resolver

April 01, 2020 2:00PM

Introducing 1.1.1.1 for Families

Introducing 1.1.1.1 for Families — the easiest way to add a layer of protection to your home network and protect it from malware and adult content. 1.1.1.1 for Families leverages Cloudflare's global network to ensure that it is fast and secure around the world....

By

Matthew Prince

1.1.1.1 , Families , Privacy , DNS , Security