2 minute read

Today we're launching two new features and a brand new dashboard and API for Virtual DNS. Virtual DNS is CloudFlare’s DNS proxy that sits in front of some of the largest hosting providers in the world, shielding their DNS infrastructure from attacks and providing them with the DNS performance benefits of CloudFlare's network and caching.

It's been a year since we launched Virtual DNS, and the service has expanded a lot since then. Virtual DNS now answers 7 billion DNS queries a day, 4.6 billion of which are served from our cache, saving our Virtual DNS customers a collective 65% of their bandwidth. Beyond the bandwidth savings, Virtual DNS also protected its customers from a large vulnerability in BIND when it was discovered in August.

Virtual DNS is different from CloudFlare’s core authoritative DNS service, which comes included in CloudFlare’s standard plans. In authoritative DNS, CloudFlare hosts DNS records for a zone on its own infrastructure. In Virtual DNS, the customer hosts all of the DNS records for all of their zones, and CloudFlare serves as a front end proxy to them.

A brand new dashboard and API

The new Virtual DNS dashboard makes it fast and easy to update Virtual DNS settings, and the changes are just as quickly propagated worldwide.

Alongside the dashboard, we've also released a new API for managing Virtual DNS. You can now configure every aspect of Virtual DNS programmatically. This is how easy it is to spin up a new Virtual DNS instance -- it’s just one command:

$ curl -X POST "https://api.cloudflare.com/client/v4/user/virtualdns"
-H "X-Auth-Email: user@example.com" -H "X-Auth-Key: XXX" -H "Content-Type: application/json" --data '{"name":"My Awesome Virtual DNS cluster","origin
ips":["1.1.1.1","2.2.2.2"],"minimumcachettl":60,"maximumcachettl":900,"deprecateanyrequest":true}'

Multi-User Control

Virtual DNS now supports Multi-User access control. You can now invite your team members to manage your Virtual DNS instance together. Multi-User comes with advanced security features such as the ability to require the use of two-factor authentication across your team. If you are a Virtual DNS user and have not yet enabled Multi-User, reach out to to your sales rep to get upgraded.

Better Cache Control

Caching has always been a tradeoff between serving the most up-to-date data and having speedy responses, but starting today, we are giving Virtual DNS customers total control of how long we cache their DNS answers for.

This means that a DNS provider can reduce the amount of time we cache their answers to optimize for up-to-date data, but if any of their servers start to have problems, they can immediately increase the caching time to lessen the load on their origin DNS servers.

Bringing ANY query deprecation to Virtual DNS

In October 2015, CloudFlare stopped answering the ANY query, a special query type in DNS meant to return every DNS record in a zone. It’s mostly used to launch giant DDoS attacks and hardly ever used for legitimate traffic. If DNS providers behind Virtual DNS also want to stop serving large answers for ANY, they can now enable ANY deprecation in one click or API call, which several of our Virtual DNS customers have already done.

Availability

If you are a current customer of Virtual DNS, someone on your account team will be reaching out today to get you started with the dashboard and new features. If you are a DNS provider or registry and are not yet a Virtual DNS customer and would like to be, get in touch.