Over the last six years, we’ve built the tooling, infrastructure and expertise to run a DNS network that handles our scale - we’ve answered a few million DNS queries in the few seconds since you started reading this.
DNS is the backbone of the internet. Every email, website visit, and API call ultimately begins with a DNS lookup. Internet is built on DNS, so every hosting company, registrar, TLD operator, and cloud provider must be able to run reliable DNS.
Last year CloudFlare launched Virtual DNS, providing DDoS mitigation and a strong caching layer of 100 global data centers to those running DNS infrastructure.
Today we’re expanding that offering with two new features for an extra layer of reliability: Serve Stale and DNS Rate Limiting.
Virtual DNS sits in front of your DNS infrastructure. When DNS resolvers lookup answers on your authoritative DNS, the query first goes to CloudFlare Virtual DNS. We either serve the answer from cache if we have the answer in cache, or we reach out to your nameservers to get the answer to respond to the DNS resolver.
Even if your DNS servers are down, Virtual DNS can now answer on your behalf by serving a stale answer from cache. It’s a backup for you when your nameservers aren’t up, keeping your customers’ records online.
Virtual DNS can now help you control what hits your network. Because Virtual DNS sits in front of your DNS nameservers, it shields your infrastructure from the load, and only sends you the traffic that you want to get.
With rate limiting, you configure a threshold of how many queries per second Virtual DNS should send through to your DNS servers. The rate limit only counts queries that are sent to your server, not what gets answered from cache. Queries that exceed the rate limit may still be answered with answers in cache, even if they are stale, with our new Serve Stale functionality.
Getting Started With Virtual DNS
If you’re running your own DNS infrastructure and would like to get started with Virtual DNS, get in touch.