This article will guide you on how to add, remove and bypass common DNS records in CloudFlare.
CloudFlare allows you to manage all common DNS records like A, MX, NS, TXT, CNAME, etc. of your domain. If you have already added your website to CloudFlare, you can refer to this article to manage different DNS records on CloudFlare. If not, you can refer to the following article to add a new website to your CloudFlare account.
How to Enable Free SSL Certificate From CloudFlare Panel
Following are the steps to manage different DNS records from CloudFlare. We believe that you have Logged into your Cloudflare account.
Select the DNS icon from the CloudFlare top menu.
An A record is the pointer record that is used to point your website to a server. It indicates the IP address of a given domain. ‘A’ records only hold Ipv4 addresses; if the site has an Ipv6 address, it will instead use an ‘AAAA’ record.
1. Select the A record type from the record type drop-down on the left-hand side.
2. Enter the record Name and IPv4 address.
3. Click Add Record to finish adding the record.
The NS records are used to locate the DNS zone of your website. It stores the nameserver for a DNS entry. NS stands for ‘nameserver,’ and this record indicates which DNS server is authoritative for that domain (which server contains the actual DNS records). A domain will often have multiple NS records, which can indicate primary and backup name servers for that domain.
1. Select the NS record type from the record type drop-down on the left-hand side.
2. Enter the record Name and Nameserver.
3. Click Add Record to finish adding the record.
The TXT record is the text record (also known as the Sender Policy Framework - SPF record) used to identify which email server is allowed to send emails from the domain. The ‘text’ record lets a domain administrator enter text into the DNS record, as it was originally intended as a place for human-readable notes. One domain can have many TXT records. They are commonly used for Sender Policy Framework (SPF) codes that help an email server determine if a message is from a trusted source and ownership verification of a domain.
1. To add a TXT record click on TXT Record type.
2. Under DNS Records, complete the fields for your TXT record.
3. I.e., TXT Record: v=spf1 a:mail.domain.com ~all.
4. Click Add Record.
The CNAME is the canonical record, an alias for your domain name. It forwards one domain or subdomain to another and does NOT provide an IP address.
1. Select CNAME from the record type drop-down menu, and specify the record Name and Record Data.
2. Click Add Record.
The MX record is the mail exchange record that is required for the email service. MX records are used to specify the mail server that is responsible for accepting email messages on behalf of a recipient’s domain. MX records can be created in the DNS settings of your Cloudflare dashboard. Cloudflare operates as an HTTP/S proxy and currently does not proxy mail ports.
From the drop-down, select MX as the record type.
1. Keep the record Name field blank.
2. In the next text box (it says Click to configure), click to open the Add Record dialog.
3. Type the address of the mail server in Server field and set the Priority to 10.
4. Click on Save button.
5. Now, Click Add Record.
Cloudflare does not proxy traffic on port 25 (SMTP).
If Cloudflare is not disabled for the MX records, mail delivery might not be successful.
Make sure your mail records are grey-clouded on Cloudflare.
WHAT SUBDOMAIN RECORDS ARE APPROPRIATE FOR ORANGE / GRAY CLOUDS?
An orange cloud means your web traffic is running through Cloudflare making your site faster, safer and smarter. A gray cloud means your web traffic is not running through Cloudflare.
Only A and CNAME over web traffic ports (such as 80 and 443) records have the option to be powered by Cloudflare, meaning that only A, AAAA, and CNAME records have the option of an orange cloud.
However, not all A, AAAA, and CNAME records are appropriate to pass through Cloudflare. Cloudflare suggests which records should be orange, but you can easily change this by clicking on the cloud. To decide which records pass through the Cloudflare network, you need to understand what type of content appears on that subdomain. You should enable Cloudflare for any subdomain that gets web traffic.
You should not enable Cloudflare for subdomains that handle non-web traffic, such as Mail, FTP, and SSH. Instead, these types of records should be marked by a gray cloud. To view these options for Cloudflare protection, please go to Your Website -> Menu -> DNS Settings.
TO DISABLE (BYPASS) A DNS RECORD
1. Click on (the orange cloud icon) of the record if you want to bypass CloudFlare (For DNS records like Mail A record of MX, FTP, etc.).
2. Once you click on the (orange cloud icon), it turns into a gray cloud.
3. If there are any additional records you'd like to disable, you can disable them from here.
TO REMOVE A DNS RECORD
1. Click the “X” button left-hand side of a record row.
2. In the confirmation box click OK.