DNS Wireformat
Cloudflare respects DNS wireformat as defined in RFC 1035 ↗.
To send queries using DNS wireformat, set the header accept: application/dns-message, or content-type: application/dns-message if using POST to indicate the media type of the query.
Queries using DNS wireformat can be sent using POST or GET.
When making requests using POST, the DNS query is included as the message body of the HTTP request, and the MIME type (see below) is included in the Content-Type request header. Cloudflare will use the message body of the HTTP request as sent by the client, so the message body should not be encoded.
The following is an example request. The same DNS query for www.example.com, using the POST method would be:
:method = POST:scheme = https:authority = cloudflare-dns.com:path = /dns-queryaccept = application/dns-messagecontent-type = application/dns-messagecontent-length = 33
<33 bytes represented by the following hex encoding>00 00 01 00 00 01 00 00 00 00 00 00 03 77 77 7707 65 78 61 6d 70 6c 65 03 63 6f 6d 00 00 01 0001And would return the answer in wireformat:
:status = 200content-type = application/dns-messagecontent-length = 64cache-control = max-age=128
<64 bytes represented by the following hex encoding>00 00 81 80 00 01 00 01 00 00 00 00 03 77 77 7707 65 78 61 6d 70 6c 65 03 63 6f 6d 00 00 01 0001 03 77 77 77 07 65 78 61 6d 70 6c 65 03 63 6f6d 00 00 01 00 01 00 00 00 80 00 04 C0 00 02 01To try this using cURL, write:
echo -n 'q80BAAABAAAAAAAAA3d3dwdleGFtcGxlA2NvbQAAAQAB' | base64 --decode | curl --header 'content-type: application/dns-message' --data-binary @- https://cloudflare-dns.com/dns-query --output - | hexdumpWhen making requests using GET, the DNS query is encoded into the URL. The accept header can be used to indicate the MIME type (default: application/dns-message).
Example request:
curl --header 'accept: application/dns-message' --verbose 'https://cloudflare-dns.com/dns-query?dns=q80BAAABAAAAAAAAA3d3dwdleGFtcGxlA2NvbQAAAQAB' | hexdump* Using HTTP2, server supports multi-use* Connection state changed (HTTP/2 confirmed)* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0* Using Stream ID: 1 (easy handle 0x7f968700a400)GET /dns-query?dns=q80BAAABAAAAAAAAA3d3dwdleGFtcGxlA2NvbQAAAQAB HTTP/2Host: cloudflare-dns.comUser-Agent: curl/7.54.0accept: application/dns-message
* Connection state changed (MAX_CONCURRENT_STREAMS updated)!HTTP/2 200date: Fri, 23 Mar 2018 05:14:02 GMTcontent-type: application/dns-messagecontent-length: 49