Skip to main content

DNS and Domain Services

DNS is the foundation of every Cloudflare deployment. Before Cloudflare can accelerate, cache, or protect your traffic, it must first resolve your domain. This module covers every DNS-related service Cloudflare offers — from authoritative hosting to privacy-focused resolution.

Why DNS Is First

Every Cloudflare feature depends on DNS. You cannot enable CDN, WAF, or Workers unless Cloudflare controls (or proxies) your domain's DNS. Understanding this layer is a prerequisite for everything that follows.

How Cloudflare DNS Fits Together

Core Terminology

TermWhat It IsAnalogy
Authoritative DNSThe server that holds the definitive records for your domainThe official phone book for your company
Recursive ResolverA server that looks up DNS records on behalf of the clientA librarian who finds the book you requested
Proxy Mode (Orange Cloud)Traffic flows through Cloudflare's network (CDN, WAF, DDoS active)A security guard who inspects packages before delivery
DNS-Only (Grey Cloud)Cloudflare only provides DNS resolution, traffic goes directly to originA phone directory that gives you the number directly
DoH / DoTEncrypted DNS queries over HTTPS or TLSMaking a phone call through a secure, encrypted line
ZoneA domain and all its DNS records managed as a unitA filing cabinet for one company's contact records

What You Will Learn

LessonWhat It Covers
Authoritative DNSSetting up your zone, record types, proxy mode vs DNS-only, TTL strategy
1.1.1.1 DNS ResolverCloudflare's public recursive resolver, DoH, DoT, and privacy guarantees
Domain RegistrarRegistering and transferring domains at-cost with Cloudflare Registrar
Email RoutingFree email forwarding, catch-all addresses, and worker integration

Prerequisites

  • A registered domain name (or willingness to register one through Cloudflare)
  • Access to your current registrar's nameserver settings
  • Basic understanding of DNS concepts (A records, CNAME, MX records)