Multiple queries to cname record without IPv6


I have a root domain pointing to a cname record without IPv6 ( ) but in the DNS logs I have and huge amount of IPv6 queries, like 6x plus IPv4 ones.

I understand thet one per protocol is usual, but not this difference.

What could be causing this?



Thank you for asking.

May I ask if those IPs in your server log files are coming from the Cloudflare network? :thinking:

Maybe Cloudflare tried to connect to your origin but didn’t succeed :thinking:

Kindly re-check if Cloudflare is allowed to connect to your origin host to as follows in the below article:

Nevertheless, Cloudflare IP addresses list can be found here:

Otherwise, maybe some kind of an attack pattern is ongoing in your case? :thinking:

If you see Cloudflare IPs, kindly make sure to implement the method to restore the real visitor IP in your server log files by following the steps from the article below:

Also, might be Cloudflare gives IPv6 precedence over IPv4 when connecting or something with the “IP translation” :thinking:


Yes, all IPs are from CF, queries are mainly from


This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.