I have a root domain pointing to a cname record without IPv6 ( example.com → cname.otherdomain.com ) but in the otherdomain.com DNS logs I have and huge amount of IPv6 queries, like 6x plus IPv4 ones.
I understand thet one per protocol is usual, but not this difference.
What could be causing this?
Thank you for asking.
May I ask if those IPs in your server log files are coming from the Cloudflare network?
Maybe Cloudflare tried to connect to your origin but didn’t succeed
Kindly re-check if Cloudflare is allowed to connect to your origin host to as follows in the below article:
Nevertheless, Cloudflare IP addresses list can be found here:
Otherwise, maybe some kind of an attack pattern is ongoing in your case?
If you see Cloudflare IPs, kindly make sure to implement the method to restore the real visitor IP in your server log files by following the steps from the article below:
Also, might be Cloudflare gives IPv6 precedence over IPv4 when connecting or something with the “IP translation”
Yes, all IPs are from CF, queries are mainly from 184.108.40.206.
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.