Fast, Powerful, and Secure DNS
Powering over 38% of managed DNS domains, Cloudflare runs one of the largest authoritative DNS networks in the world. With an average of a few milliseconds query speed, we have the fastest performance of any managed DNS provider. DNS updates happen within seconds, making DNS propagation delays a thing of the past.
Cloudflare’s DNS is available to everyone. Setting it up takes just a few minutes, and you can add security and performance features at no extra cost.
Cloudflare’s global Anycast network powers our DNS and other products, serving 86 billion DNS queries per day, and growing. More than 5.5 million Internet properties including major ecommerce websites, government agencies, and enterprises, use Cloudflare DNS service to make sure their property is online and always available to anyone in the world.
Authoritative DNS Built for Performance
Cloudflare DNS is powered by the same network as our lighting fast-CDN. We resolve domains with the same 102 data centers that cache our users’ content, making us the fastest DNS provider globally.
DNS changes propagate orders of magnitude faster than public DNS since we can avoid waiting for public TTLs to expire. This means migrating web hosts or switching over to a disaster recovery server happens almost instantaneously.
Built-In DNS Security
Cloudflare DNS is DDoS protection for domain resolution. It sits behind the same 10Tbps network that protects over 5.5 million Internet properties from denial-of-service attacks. Cloudflare DNS also comes with built-in load-balancing, automatic failover, rate-limiting, and filtering. Cloudflare also offers DNSSEC to add a layer of trust on top of DNS by providing authentication. Two-factor authentication is available for all plan types.
Customers on the Business plan receive a 100% uptime SLA. Enterprise customers get 2500% uptime SLA.
Easy DNS Management
We make DNS easy. All your domains can be managed through our user-friendly interface or via an API, regardless of where your Internet properties are hosted. We don’t set query limits and can support millions of records in a single domain.
Global Coverage From an Anycast-Powered Network
Cloudflare’s global Anycast network powers our DNS and other services, serving 86 billion DNS queries per day, and growing. More than 5.5 million websites, including major ecommerce websites, government agencies and enterprises, use Cloudflare DNS service to make sure their website is online and always available to anyone in the world.
With data centers located across the world, every node in our network can serve any DNS request on our custom-built, fully-owned hardware running Cloudflare’s authoritative DNS software. With built-in load balancing and automatic failover, the Cloudflare network has been designed to withstand losing 50% of the network without impacting service availability. Customers who sign up for our Business or Enterprise plans also receive a 100% and 2500% uptime SLA, respectively.
Setting Up Your Authoritative DNS Records
To add a new DNS record, choose the record type you want to add and then the appropriate values for that record type. The update to DNS should take less than a minute.
Going Beyond DNS
Once you’re set up on Cloudflare’s DNS service, you can decide to enable additional features. In your DNS record, you’ll be presented with an orange or gray cloud. Orange means that Cloudflare is turned on and your traffic is routing through Cloudflare’s network, which will help your website run faster and block potential web threats such as DDoS attacks and other common web threats. Learn more ›
Cloudflare Pricing
Everyone’s Internet application can benefit from using Cloudflare.
Pick a plan that fits your needs.
Free
Pro
Business
Enterprise
Trusted By
More About Domain Name System
What Is DNS?
While meaningful to a computer, IP addresses (like this one, “2a06:98c0::/29”), are nigh-unintelligible to human beings. Even if you’re in the select group of people who understand these complex strings of numbers, letters, dots, and slashes, memorizing multiple addresses would be a slow and painful process. Furthermore, if the address and name of a website were fixed together, then changing the location of a web resource would be a rather cumbersome and difficult process because the name would also fundamentally change each the time website was moved. Thankfully, DNS, or Domain Name System, is a relatively painless way of using easily remembered URLs (or Universal Resource Locator) to navigate to web resources.
DNS is a fundamental feature of the internet that allows web resources to be systematically found and used by anyone online. If you imagine the internet to be a physical network of streets and roads lined with web properties, then you can think of DNS as an address book containing the IP addresses of specific web resources. A typical DNS lookup can be thought of like this: when someone types the URL of a website they’re trying to access into their browser, their browser uses DNS to lookup the URL and find its corresponding IP address. With this IP address the browser then navigates to the desired site, all without any interaction from the user. In short, DNS is the system through which human-understood domain names get translated into computable IP addresses.
How Does DNS Work?
Because the Internet is constantly changing, it’s incredibly difficult to maintain an up-to-date directory of every web resource name and its respective location. DNS has evolved into two distinct and necessary types: recursive and authoritative nameservers. Recursive DNS nameservers don’t contain IP addresses for domains, but rather function to recursively search through possible locations where those addresses are stored. By leveraging recursive searches for the locations of web properties through DNS, the internet can be as rapidly changing and dynamic as possible— new answers to recursive calls can be easily added without changing how the recursive search works.
The other type of DNS, Authoritative DNS nameservers, store the actual records of IP addresses for respective domains. When a recursive DNS server searches through DNS records, it searches records stored on Authoritative DNS nameservers.
The first place that is searched in a DNS query is the DNS root server. There are 13 DNS root servers around the world run by 12 independent organizations. DNS root servers function to provide the location of the authoritative server of every TLD, or top level domain (.com, .edu, .net, etc.). After the location of the authoritative server for the TLD has been found, that server is used to find the location for the authoritative server for the domain itself, which will return the address of the desired domain.
Benefits of Managed, Anycast DNS
There are two potential issues with the DNS model described above. First, if you’re using a single authoritative nameserver to store the DNS records for your web property, then there can be dramatic latency for those accessing that server due to geographic distance. That is, if your server is located in the United States, and someone in Australia is trying to access your web property there can be a noticeable delay for them before any content is even loaded. Second, if your authoritative nameserver goes offline, then your web property can become entirely inaccessible, even if the property itself is still online.
To solve this issues, Cloudflare provides a managed Anycast DNS service. Cloudflare works to make its Anycast DNS service as fast and reliable as possible. By serving records from over 102 points of presence (PoP’s) around the world customers can see dramatic latency and reliability improvements. Anycast technology allows Cloudflare’s DNS to serve the same records from multiple locations and to route DNS inquiries to the nearest point of presence in order to ensure the lowest latency possible. Therefore, a site using Cloudflare’s DNS serves records from the same region as the originating request. While Anycast technology ensures that your DNS records are being served as fast as possible, it also provides redundancies that prevent offline servers from stopping the flow of traffic to your site. For example, if there is a network issue in Barcelona, then traffic is automatically routed through Madrid, which ensures your DNS records are continuously served without interruption.