Posts

Background There is a possibility that an attacker could find the DNS or the IP address of a origin configured in Cloudflare and connect too it directly, by passing the Cloudflare, WAF and all its protections. In this article I will breifly discuss about different mechanisms which could be implemented to address the above problem. At the end I will also analyze different solution and come up with the solution that would be the most easiest to implement....

Setting up DNS zone with Cloudflare Cloudflare provides 3 ways of setting up DNS Zones Full Setup Partial CNAME Zone Transfers In this article we are going to address only one from the above, which is the Partial CNAME setup. We use Partial CNAME setup in cases where we already have authoritative DNS provider (i.e AWS Route53) and we don’t want the Cloudflare to be our authoritative DNS provider. With Partial CNAME setup we can allow our traffic to proxy through the Cloudflare’s global edge network....