{"id":1142,"date":"2018-09-05T10:53:52","date_gmt":"2018-09-05T05:23:52","guid":{"rendered":"https:\/\/www.coimbatorewebhosting.com\/blog\/?p=1142"},"modified":"2019-04-09T16:20:52","modified_gmt":"2019-04-09T10:50:52","slug":"cloudflares-dns-secure-the-site","status":"publish","type":"post","link":"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/","title":{"rendered":"Secure your site by cloudflare&#8217;s DNS"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#How_does_CloudFlare_work\" >How does CloudFlare work?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#What_is_static_content_and_why_would_I_want_it_cached\" >What is static content and why would I want it cached?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#Who_can_use_CloudFlare\" >Who can use CloudFlare?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#How_do_you_know_who_is_bad_traffic_and_how_do_you_protect_me_from_it\" >How do you know who is bad traffic and how do you protect me from it?<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#What_is_DNS_and_how_it_does_works\" >What is DNS and how it does works?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#What_is_1111_and_how_does_it_work\" >What is 1.1.1.1 and how does it work?<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#Router\" >Router<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#Windows\" >Windows<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#MacOS\" >MacOS<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#Linux\" >Linux<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#iPhone\" >iPhone<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/coimbatorewebhosting.com\/blog\/cloudflares-dns-secure-the-site\/#Android\" >Android<\/a><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"How_does_CloudFlare_work\"><\/span><strong>How does CloudFlare work?<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h1>\n<p>CloudFlare\u00a0is a network of data centers that sits between your web server and the rest of the internet.\u00a0 Generally the websites are facilitated in a server or hosted in a server is called hosting server .It is called as a origin server. Visitors wanting to visit your\u00a0 web pages or\u00a0customer's will explore their browser to their site.<\/p>\n<p>Instead of going direct to your hosting origin server, websites with CloudFlare will direct traffic to the CloudFlare network instead.<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-1283\" src=\"https:\/\/www.coimbatorewebhosting.com\/blog\/wp-content\/uploads\/2018\/09\/cloud-fare.png\" alt=\"cloudflare\" width=\"571\" height=\"286\" srcset=\"https:\/\/coimbatorewebhosting.com\/blog\/wp-content\/uploads\/2018\/09\/cloud-fare.png 1000w, https:\/\/coimbatorewebhosting.com\/blog\/wp-content\/uploads\/2018\/09\/cloud-fare-300x150.png 300w, https:\/\/coimbatorewebhosting.com\/blog\/wp-content\/uploads\/2018\/09\/cloud-fare-768x384.png 768w, https:\/\/coimbatorewebhosting.com\/blog\/wp-content\/uploads\/2018\/09\/cloud-fare-120x60.png 120w\" sizes=\"auto, (max-width: 571px) 100vw, 571px\" \/><\/p>\n<p>This completes two things: CloudFlare can serve stored static web content to the visitor, and screen visitors to verify they are good and not traffic coming from an attack, malicious bots, or other bad things. Since CloudFlare\u2019s network is made up of 32 global data centers, that implies we can serve your visitors web content very fast regardless of the distance between your origin server and the viewer.<\/p>\n<h3><strong>What is static <a  href=\"https:\/\/www.coimbatorewebhosting.com\/blog\/how-to-secure-website-with-ssl\/\" title=\"content\" alt=\"content\">content<\/a> and why would I want it cached?<\/strong><\/h3>\n<p>Static content is really anything on a website page that doesn\u2019t change regularly. Javascript, CSS framing, images are all great examples as these typically are not changed from visitor to visitor. The benefit of having it stored, and reserved around the world, is that your website loading performance is greatly increased. On average, websites on CloudFlare load twice as fast and because that traffic isn\u2019t coming from your origin server, CloudFlare can spare 65% of data transfer capacity(bandwidth).<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Who_can_use_CloudFlare\"><\/span><strong>Who can use CloudFlare?<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Anyone who has <a  href=\"https:\/\/www.coimbatorewebhosting.com\/blog\/understanding-about-content-management-systemcms\/\" title=\"a web\" alt=\"a web\">a web<\/a> page who wants to increase performance and security. That can be <a href=\"https:\/\/wordpress.com\/\" rel=\"nofollow noopener\" target=\"_blank\">WordPress<\/a> blogs (or any kind of CMS platform), eCommerce sites, personal websites, company websites.\u00a0Pretty much anything.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"How_do_you_know_who_is_bad_traffic_and_how_do_you_protect_me_from_it\"><\/span><strong>How do you know who is bad traffic and how do you protect me from it?<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>CloudFlare sees a ton of internet traffic, morethan 5% of the internet. We can tell what\u00a0activity(traffic) is coming from what IPs and in the event that we identify that and IP address is causing attack traffic, like a DDoS attack, we can rank it for security hazard. We utilize our own IP reputation ranking in conjunction with 3rd party rankings to develop a threat ranking and depending on what settings you select, will screen out or challenge some of those visitors.<br \/>\nWhat\u2019s even better, CloudFlare is very robust and works as an Anycast network. This means that web traffic is routed through CloudFlare in the most efficient way possible and isn\u2019t dependent on certain pathways. So if, for example, someone on CloudFlare is getting DDoS attacked, we can keep their website up and available because we have a lot of flexibility on how we get the good traffic to their origin server.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_is_DNS_and_how_it_does_works\"><\/span><strong>What is DNS and how it does works?<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>DNS is the Internet's master phone book. It turns human-readable domain names, such as coimbatorewebhostig.com, into <a href=\"https:\/\/www.coimbatorewebhosting.com\/blog\/safely-add-code-php-in-wordpress\/\" title=\"Internet\" alt=\"Internet\">Internet<\/a> Protocol (IP) addresses such as 111 .10 11.111.For all practical purposes, every time you go anywhere on the internet, you start by interacting with DNS.<\/p>\n<p>A complex webpage can require multiple DNS lookups - one for the text, another for an image, another for an ad on the page, and so on -- before your page loads. Each\u00a0DNS lookup takes an average of 32 milliseconds (ms). That really slows down many websites. So, when you speed up your DNS lookups, you'll get faster internet performance.<\/p>\n<p>There have been quick DNS administrations for a considerable length of time to encourage you.My favorites are\u00a0Cisco OpenDNS and\u00a0Google Public DNS. According to Olafur Gudmundsson, Cloudflare's director of engineering, Cloudflare's 1.1.1.1 will be faster than the others because \"we are already building data centers all over the globe to reduce the distance (i.e. latency) from users to content. Eventually we want\u00a0everyone to be within 10 milliseconds of at least one of our locations.\"<\/p>\n<p>Likewise, the Cloudflare public DNS resolver uses the open-source\u00a0Knot Resolver. This has aggressive caching and \"negative caching\" to improve performance. The first uses a distributed cache to improve the odds that, when you search for a popular site, Knot will already have the IP address ready to deliver to you. The second, based on\u00a0RFC 8198, stores popular mistakes --wwww instead of www for example -- so minimal time is used in returning an error message.<\/p>\n<p>While 1.1.1.1 is fast, it's greatest enhancements comes with securing your privacy. When the\u00a0Federal Communications Commission gutted net neutrality, it also opened the door for ISPs to track all your internet searches. ISPs can, and are, selling your browsing data.<\/p>\n<p>What would you be able to do about it? One solution is to\u00a0use a virtual private network (VPN). Another is to stop using your ISP's DNS service and switch to an independent DNS resolver.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_is_1111_and_how_does_it_work\"><\/span><strong>What is 1.1.1.1 and how does it work?<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>What 1.1.1.1 conveys to the table, that the others haven't, is an emphasis on client protection.<\/p>\n<p>To do this, Cloudflare has submitted itself to never utilizing DNS browsing data to target ads, The organization has likewise dedicated to never recording your IP address and wiping all DNS logs inside 24 hours. Cloudflare has contracted\u00a0KPMG, the well-respected auditing firm, to annually audit\/review its code and practices and publish a public report confirming it's keeping its word.<\/p>\n<p>In fact, Cloudflare is also protecting your privacy by adding support for\u00a0DNS-over-TLSand\u00a0DNS-over-HTTPS. DNS-over-TLS takes the existing, insecure DNS protocol and adds transport layer encryption. DNS-over-HTTPS includes not only security, it also supports forthcoming internet protocols such as\u00a0Quick UDP Internet Connections (QUIC)\u00a0and\u00a0HTTP\/2 Server Push.<\/p>\n<p>All in all, do you need quicker, more secure DNS? Here's the manner by which to make 1.1.1.1 work for you.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Router\"><\/span><strong>Router<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>If you're using a router for your office network DNS settings -- and you probably are -- log in and find your DNS server settings. Once there, note down your existing DNS records and replace them with the following:<\/p>\n<ul>\n<li>For IPv4: 1.1.1.1 and 1.0.0.1<\/li>\n<li>For IPv6: 2606:4700:4700::1111 and 2606:4700:4700::1001<\/li>\n<\/ul>\n<p>That's it. The next time your computers look up a website, they'll use the 1.1.1.1 DNS services.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Windows\"><\/span><strong>Windows<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>With Windows, click on the Start menu, then click on Control Panel, and do the following:<\/p>\n<ol>\n<li>Click on Network and Internet.<\/li>\n<li>Click on Change Adapter Settings.<\/li>\n<li>Right click on the Wi-Fi network you are connected to, then click Properties.<\/li>\n<li>Select Internet Protocol Version 4 (or Version 6 if desired).<\/li>\n<li>Click Properties.<\/li>\n<li>Write down any existing DNS server entries for future reference.<\/li>\n<li>Click Use The Following DNS Server Addresses.<\/li>\n<li>Replace those addresses with the 1.1.1.1 DNS addresses:<\/li>\n<\/ol>\n<ul>\n<li>For IPv4: 1.1.1.1 and 1.0.0.1<\/li>\n<li>For IPv6: 2606:4700:4700::1111 and 2606:4700:4700::1001<\/li>\n<\/ul>\n<h4><span class=\"ez-toc-section\" id=\"MacOS\"><\/span><strong>MacOS<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>For macOS, open System Preferences, and then do the following:<\/p>\n<ol>\n<li>Search for DNS Servers and select it from the dropdown.<\/li>\n<li>Click the + button to add a DNS Server and enter 1.1.1.1<\/li>\n<li>Click + again and enter 1.0.0.1<\/li>\n<li>Click Ok, then click Apply.<\/li>\n<\/ol>\n<h4><span class=\"ez-toc-section\" id=\"Linux\"><\/span><strong>Linux<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>With Linux, use\u00a0Network Manager. There, click the IPv4 or IPv6 tab to view your DNS settings, and then do the following steps:<\/p>\n<ol>\n<li>Set the \"Automatic\" toggle on the DNS entry to Off.<\/li>\n<li>Provide the 1.1.1.1 DNS addresses in the DNS entries field:\n<ul>\n<li>1.0.0.1<\/li>\n<li>For IPv6: 2606:4700:4700::1111,2606:4700:4700::1001<\/li>\n<\/ul>\n<\/li>\n<li>Click Apply, then restart your browser.<\/li>\n<\/ol>\n<h4><span class=\"ez-toc-section\" id=\"iPhone\"><\/span><strong>iPhone<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>From your iPhone's home screen, open the Settings app.<\/p>\n<ol>\n<li>Tap Wi-Fi, then tap your preferred network in the list.<\/li>\n<li>Tap Configure DNS, then tap Manual.<\/li>\n<li>If there are any existing entries, tap the - button, and Delete next to each one.<\/li>\n<li>Tap the + Add Server button, then type 1.1.1.1<\/li>\n<li>Tap the + Add Server button again, then type 1.0.0.1. This is for redundancy.<\/li>\n<li>Tap the Save button on the top right.<\/li>\n<\/ol>\n<h4><span class=\"ez-toc-section\" id=\"Android\"><\/span><strong>Android<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>On Android, it's far harder to set up DNS than with other operating systems.<\/p>\n<p>The easiest way, which works across most Android devices, is to install\u00a0DNS Changer. This works by creating a local VPN work on your device. This VPN only exists within your device and your mobile or Wi-Fi connection. To use it, you place 1.1.1.1 and 1.0.0.1 in as your DNS entries.<\/p>\n<p>I think the above post will help you to know about the cloud fare\u00a0 DNS.And to know the og entries for total no of connections to a Port From an IP Address.<a href=\"https:\/\/www.coimbatorewebhosting.com\/blog\/making-log-entries-for-total-no-of-connections-to-a-port-from-an-ip-address\/\">click here<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>How does CloudFlare work? CloudFlare\u00a0is a network of data centers that sits between your web server and the rest of the internet.\u00a0 Generally the websites are facilitated in a server or hosted in a server is called hosting server .It is called as a origin server. Visitors wanting to visit [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1154,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[17,1],"tags":[111,109,28,113,112,110],"class_list":["post-1142","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","category-latest","tag-bad-traffic","tag-cloudflare","tag-dns","tag-google-public-dns","tag-origin-server","tag-static-content"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/coimbatorewebhosting.com\/blog\/wp-content\/uploads\/2018\/09\/cloudfare.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pa2YU7-iq","_links":{"self":[{"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/posts\/1142","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/comments?post=1142"}],"version-history":[{"count":0,"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/posts\/1142\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/media\/1154"}],"wp:attachment":[{"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/media?parent=1142"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/categories?post=1142"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coimbatorewebhosting.com\/blog\/wp-json\/wp\/v2\/tags?post=1142"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}