DNS management with Cloudflare, etc
I had DNS management managed by my domain registrar for more than a decade. Having been exposed to cloudflare for years, I have finally decided to move DNS management to cloudflare.
Plans include the following:
I signed-up for a free plan.
Free plan includes the following:
- Fast, easy-to-use DNS
- Free automated SSL certificates
- Global content delivery network (CDN)
- Unmetered mitigation of DDoS attacks with up to 67 Tbps capacity
- Up to 100k Workers requests and 30 scripts
- 3 Page Rules
Originally, I only after for
DNS management and
Upon sign-up, most of my domain name’s existing DNS entries were imported automatically. Some, I added manually.
I had to change nameservers from name.com to cloudflare.
ns1.name.com ns2.name.com ns3.name.com ns4.name.com
All of my DNS entries are proxied by cloudflare, meaning, real IP addresses
aren’t exposed, with exceptions to
I enabled DNSSEC protection on my domain name. This protects against forged DNS answer. DNSSEC protected zones are cryptographically signed to ensure the DNS records received are identical to the DNS records I published.
This returns the IP address of the value of a CNAME entry, instead of the name value itself.
I am only allowed to get 3 free page rules’ entries.
I used 1 for to 301 redirect
non-www. Before, I had this managed
5 additional page rules in excess of 3 free, costs $5/month. This is
without the need to upgrade the subscription plan from
I set my SSL/TLS encryption mode to
I also set
Always Use HTTPS to
Further, I set HTTP Strict Transport Security (HSTS) to
On with the following
Status: On Max-Age: 0 (Disable) Include subdomains: Off Preload: Off
Also, I set automatic HTTPS Rewrites to
On. This helps fix mixed content by
https for all resources or links on my website that can be
served with HTTPS.
I had this before setup with nginx
With added protection and features, cloudflare is a very good option. I can do everything and more with added security, speed, caching, among others.