go to MageHost.pro website

Articles in this section

See more

Move DNS to CloudFlare

  • Updated
Follow

Step by step guide to migrate your DNS to CloudFlare

  • Create an account at CloudFlare (Note: if you are a development agency, make sure you create an account per customer)
  • Make sure DNSSEC is not active on the domain(s) you want to migrate. It has to be disabled first before you can change the nameservers to CloudFlare.
  • If DNSSEC is active on the domain(s), make sure the registrar follow the precise staps to disable DNSSEC. We have noticed not all providers do this in the right order which can lead to unaccessible domains. Please notify the provider the following:
    Please disable DNSSEC at the registrar for domain {DOMAIN}.
    Disabling DNSSEC needs to be done in 2 steps. First step is to disable DNSSEC at 
    the registrar. The second step, but only after 48 hours, the DS record can be 
    removed from the authoritative nameserver. If this is done too soon, there could 
    be invalid DNSSEC validation due to caching which will result to a domain not 
    being accessible.
    Make sure DNSSEC is never activated at the registrar without consulting.
  • Make a screenshot of the current DNS records (for reference and evidence)
  • When adding the domain at CloudFlare, CloudFlare will fill in most information/records itself. Make sure everything is checked and add information where needed/missing.
    You can add a domain in https://dash.cloudflare.com by selecting "Account Home" and click the "Add a site". Fill in the domain name without "www." or other subdomains. 
    At the bottom you can choose for the free option (if needed)
  • When everything is setup correctly at CloudFlare, apply for changing the nameservers of the domain to CloudFlare. Make sure the provider does this right.
  • If needed/wanted, activate CloudFlare Protection by checking the box. However, when loadtimes are longer than 100 seconds, we do not recommend using this option.
  • If everything is working well and the CloudFlare nameservers are working, remove the DNS records at the provider.

Migrating to CloudFlare with a domain having DNSSEC will often take (over) a week. First start with the domain(s) without DNSSEC. First try a domain which is less critical. If everything goes well, immediately do the rest of the domains afterwards.

How to share your CloudFlare account:
We advise to give MageHost access to CloudFlare so we can assist/check when having issues. (Note: if you are a development agency, make sure you share it with your own account too)
Sharing can be done through the following steps:
- Go to https://dash.cloudflare.com
- In the left top of the screen click on the account and then "Account Home"
- Click on the "Members" page in the menu 
- Invite members, using info@magehost.pro