How to Use Cloudflare DNS Without CDN or WAF

I’m a big fan of DNS Made Easy, and it’s what I use for all of my sites. However, I also recommend Cloudflare DNS for those that need a free solution that is fast and has great uptime. It’s definitely much better than simply using your domain registrar’s DNS. Check out these quick steps below on how to use Cloudflare DNS without the CDN or web application firewall (WAF).

Why Only Use Cloudflare DNS?

You might be wondering why you wouldn’t want to also use Cloudfare’s CDN as well? Well, in my personal experience they have a much higher time to first byte (TTFB), and therefore I prefer to use a 3rd-party CDN provider like KeyCDN. Their TTFB is simply higher because they are a full proxy service. This is to be expected because they are adding another layer before people hit your origin server. Note: The full web application firewall (WAF) is only on their paid plans. Check out our post on Cloudflare vs KeyCDN.

In some cases, their performance enhancements can make up for their TTFB, but not for those that are serious about optimization. You could also go with full page caching, but this has its own downfalls, as you’ll have to have workarounds for dynamic parts of your site. This can be especially complex and frustrating to setup for WordPress e-commerce sites. Reports have also shown that Cloudflare’s new Argo service can also help decrease your TTFB. But it isn’t free.

So you always have the option of using only Cloudflare’s DNS which is completely free.

Step 1

The first thing to do is add your site at Cloudflare. Click on “Add Site” and then on “Scan DNS Records.”

Add site to Cloudflare
Add site to Cloudflare

Step 2

Scan for your DNS records. If it doesn’t detect anything you can add them. The important part here is that you want your A record and optional AAAA records to be marked with the gray cloud. This ensures that the traffic bypasses Cloudflare’s network.

Cloudflare DNS records
Cloudflare DNS records

For basic setups, I would also recommend adding a CNAME for www that points to your main domain.

Cloudflare CNAME www
Cloudflare CNAME www

Step 3

Select the free Cloudflare plan and click “Continue.”

Cloudflare free plan
Cloudflare free plan

Step 4

You will then need to point your current nameservers with your domain registrar to Cloudflare. Note: From this point forward you will manage all of your DNS records with Cloudflare. This includes MX records, CNAMEs, etc.

Change nameservers to Cloudflare
Change nameservers to Cloudflare

Step 5

Go to the “Overview” tab, click on “Advanced,” and then click on “Pause.” This will ensure that only DNS is being routed by Cloudflare, nothing else.

Pause Cloudflare
Pause Cloudflare

And that’s it! You are now only using Cloudflare DNS without their CDN or firewall functionality.


As you can see, using only Cloudflare’s DNS service is super easy. What are your thoughts? Who do you prefer or use for your DNS provider? Let me know below in the comments.

Get More Stuff Like This

Marketing, WordPress, Blogging Tips, SEO and Reviews, once a week.

Thank you for subscribing.

Something went wrong.

6 thoughts on “How to Use Cloudflare DNS Without CDN or WAF

  1. I never thought about doing this. That’s a good idea ;) I do use CloudFlare but I am using the WAF – while WPEngine (we have a dedicated server there) has their own firewall we were still getting hundreds of thousands of SPAM bot traffic and Cloudflare completely eliminated it. Not sure about their CDN though, seems pretty fast to me (at least in the US) but now you are making me wonder….

    Are you by any chance available for hire for site optimizations/site audit? (SEO+Speed) – I would be interested if you want to hit me up ;)

    – AJ

    • Hey AJ,
      I have encountered the same thing on a few of my sites this year as well. Out of the blue, they were getting hundreds of thousands of requests from proxy IP addresses. I did a comparison of both Cloudflare and Sucuri, and I can tell you I prefer Sucuri from a performance perspective. Even though their network is smaller, I saw better speeds.

      Unfortunately I don’t have any time for audits right now :( If I get 6 hours a sleep it’s a good day lol.

    • Ya it depends. Their TTFB is really bad. But this is simply because of full proxy. Some will say TTFB doesn’t matter, but I don’t agree with that. However, if you do full-page caching this can be fixed. But this is kind of a pain on some WordPress sites. So for me it kind of depends on the site. Agreed, you can’t beat the size of Cloudflare’s network :)

  2. Hey Brian,

    I am using Cloudflare and it works for me. I am using full page cache by Cloudflare together with WAF. Maybe TTFB is a little bit higher but it makes my site loads much faster on the other side of the globe because of Cloudflare page cache.

    What do you mean by “Bad TTFB”?

    • Hey Patrik, Cloudflare is known for high TTFB if you aren’t using full page cache. This is because they are a fully proxy service. A lot of people don’t use full page cache correctly because this requires rules be set up and with e-commerce shops especially it can get very confusing. If you have full page cache setup, then you should be good to go! I just prefer to use a traditional CDN.

Leave a Comment