DigitalOcean answers 10,000 DNS queries every second. Cloudflare ensures their DNS infrastructure is protected.
Few companies have seen growth like DigitalOcean. They offer the simplest and most cost effective solution for developers to spin up private, virtualized cloud servers – in under a minute, no less. Following rapid adoption in the developer community since launching three years ago, DigitalOcean has become the third largest cloud provider on the planet, soon to be second behind only Amazon Web Services.
It’s becoming increasingly common for malicious attacks to target DNS servers. With so many developers relying on DigitalOcean to serve their content, DigitalOcean proactively sought out a solution to ensure that their DNS resolutions were fast and always online anywhere in the world. “Even though DigitalOcean never experienced a DDoS attack, we needed to have confidence that going forward our DNS infrastructure would not fall victim of such attacks”, says Sam Kottler, a Platform Engineer at DigitalOcean.
In July 2014, DigitalOcean became one of the first test customers of Cloudflare’s new DNS proxy service, called DNS Firewall. With all of their DNS requests proxied and cached at Cloudflare’s edge, DigitalOcean reliably serves several thousand DNS answers every second.
DNS Firewall stops attack traffic at Cloudflare’s edge, before it ever reaches DigitalOcean’s nameservers. This both saves resources for real customer traffic and keeps nameservers from being knocked offline.
“Cloudflare has incredibly large network and infrastructure to stop really large attacks on the DNS system. We just get clean requests and never have to deal with malicious traffic or attacks on the DNS infrastructure,” says Kottler. “Pairing security with bandwidth savings and fast global DNS response time makes Cloudflare the perfect partner for our business.”