F5F Stay Refreshed Power Users Networks Cloudflare integration with PIA for privacy and security

Cloudflare integration with PIA for privacy and security

Cloudflare integration with PIA for privacy and security

K
Kubninjan
Senior Member
Find
389
07-09-2025, 02:00 PM
#1
Hi there! I've just started using Cloudflare as my DNS resolver. It offers quick responses and better privacy compared to my ISP. I know Cloudflare isn't a VPN, but if I'm also using PIA, what happens? Would Cloudflare still see my DNS requests while PIA is active? In the PIA settings, the DNS is always pointing to PIA, so it might override your Cloudflare configuration in my OS network options. If my router is set to use Cloudflare, PIA would likely handle everything through its own software. I'm curious if anyone has experience with this setup and whether it affects speed or privacy. I usually prefer PIA for extra security but notice my internet feels slower sometimes. Cloudflare seems like a good middle ground. Let me know what you think!
Reply
Reply
K
Kubninjan
07-09-2025, 02:00 PM #1

Hi there! I've just started using Cloudflare as my DNS resolver. It offers quick responses and better privacy compared to my ISP. I know Cloudflare isn't a VPN, but if I'm also using PIA, what happens? Would Cloudflare still see my DNS requests while PIA is active? In the PIA settings, the DNS is always pointing to PIA, so it might override your Cloudflare configuration in my OS network options. If my router is set to use Cloudflare, PIA would likely handle everything through its own software. I'm curious if anyone has experience with this setup and whether it affects speed or privacy. I usually prefer PIA for extra security but notice my internet feels slower sometimes. Cloudflare seems like a good middle ground. Let me know what you think!

Reply
Reply
D
Dreeezzyyweed
Junior Member
Find
29
07-30-2025, 06:02 AM
#2
Check if your DNS queries originate from Cloudflare. Using plain DNS makes it possible for them to intercept, though this applies to all unencrypted DNS traffic. Without DNS-over-TLS or DNS-over-HTTPS, this isn't a concern.
Reply
Reply
D
Dreeezzyyweed
07-30-2025, 06:02 AM #2

Check if your DNS queries originate from Cloudflare. Using plain DNS makes it possible for them to intercept, though this applies to all unencrypted DNS traffic. Without DNS-over-TLS or DNS-over-HTTPS, this isn't a concern.

Reply
Reply
S
sheeshooore
Junior Member
Find
11
07-30-2025, 06:39 AM
#3
I performed the dnstest with PIA turned off and the ISP shown as Cloudflare. After enabling PIA again, refreshing the page, and repeating the test, the ISP still appeared as Cloudflare. When I also turned off DoH in Firefox, the result changed to Cogent Communications. This suggests that when DoH is disabled, PIA manages DNS queries. It seems similar with other tools that might override DNS at different levels. If I disable DoH in my browser, I can confirm PIA handles DNS requests; otherwise, they use OS settings. Without DoH encryption, Cloudflare remains a benefit, though unencrypted traffic could be intercepted if the data is read.
Reply
Reply
S
sheeshooore
07-30-2025, 06:39 AM #3

I performed the dnstest with PIA turned off and the ISP shown as Cloudflare. After enabling PIA again, refreshing the page, and repeating the test, the ISP still appeared as Cloudflare. When I also turned off DoH in Firefox, the result changed to Cogent Communications. This suggests that when DoH is disabled, PIA manages DNS queries. It seems similar with other tools that might override DNS at different levels. If I disable DoH in my browser, I can confirm PIA handles DNS requests; otherwise, they use OS settings. Without DoH encryption, Cloudflare remains a benefit, though unencrypted traffic could be intercepted if the data is read.

Reply
Reply
A
alevy3131
Member
Find
156
07-31-2025, 04:33 PM
#4
You're not relying on DoH or DoT, so you're likely using a different DNS provider like Google or AdGuard.
Reply
Reply
A
alevy3131
07-31-2025, 04:33 PM #4

You're not relying on DoH or DoT, so you're likely using a different DNS provider like Google or AdGuard.

Reply
Reply
C
Clozen_PvP
Junior Member
Find
25
08-01-2025, 08:15 AM
#5
Thanks again @Levent The encryption isn't the main factor here. It seems the information would move to Cloudflare instead of my local ISP. Since Cloudflare deletes data within 24 hours, it adds an extra layer of privacy.
Reply
Reply
C
Clozen_PvP
08-01-2025, 08:15 AM #5

Thanks again @Levent The encryption isn't the main factor here. It seems the information would move to Cloudflare instead of my local ISP. Since Cloudflare deletes data within 24 hours, it adds an extra layer of privacy.

Reply
Reply
B
BanaanBerry
Senior Member
Find
253
08-01-2025, 03:49 PM
#6
Likely, though in my area of the forest ISPs are recognized for interfering with unencrypted DNS at government security levels.
Reply
Reply
B
BanaanBerry
08-01-2025, 03:49 PM #6

Likely, though in my area of the forest ISPs are recognized for interfering with unencrypted DNS at government security levels.

Reply
Reply
N
Nathcid_12
Junior Member
Find
3
08-01-2025, 09:15 PM
#7
leaving DoH on in Firefox with PIA enabled means the DNS traffic would still pass through Cloudflare, but it would be removed after 24 hours.
Reply
Reply
N
Nathcid_12
08-01-2025, 09:15 PM #7

leaving DoH on in Firefox with PIA enabled means the DNS traffic would still pass through Cloudflare, but it would be removed after 24 hours.

Reply
Reply