r/CloudFlare: Which DNS entries can be removed?
Original Reddit post: https://www.reddit.com/r/CloudFlare/comments/ynncos/which_dns_entries_can_be_removed/
I am new to Cloudflare.
I have my domain registered with Bluehost, set today I set Cloudflare servers for NS. It's linked.
I used to host my site at Bluehost but I'm hosting it myself.
Cloudflare DDNS points to my own IP.
Cloudflare imported all the A/CNAME/MX/SRV/TX settings and I found the below entries referring to Bluehost addresses. Possible that these are redundant leftovers because my website was hosted by them?
Which one of these DNS entries can be safely deleted at Cloudflare?
I tried mask out sensitive info with xxxx let me know if anything else should be masked.
A autoconfig 162.xxxxxxxx Proxied Auto
A autodiscover 162.xxxxxxxx Proxied Auto
A cpcalendars 162.xxxxxxxx Proxied Auto
A cpcontacts 162.xxxxxxxx Proxied Auto
SRV _caldavs._tcp 0 0 2080 xxx.bluehost.xxx DNS onlyAuto
SRV _caldav._tcp 0 0 2079 xxx.bluehost.xxx DNS only Auto
SRV _carddavs._tcp 0 0 2080 xxx.bluehost.xxx DNS only Auto
SRV _carddav._tcp 0 0 2079 xxx.bluehost.xxx DNS only Auto
TXT _caldavs._tcp path=/ DNS only AutoTXT _caldav._tcp path=/ DNS only Auto
TXT _carddavs._tcp path=/ DNS only AutoTXT _carddav._tcp path=/ DNS only Auto
TXT _cpanel-dcv-test-record _cpanel-dcv-test-record=xxxxxxx DNS only Auto
TXT default._domainkey v=DKIM1; k=rsa; p=xxxxxxxxxxxx; DNS only Auto
Thank you very much for any advice.
All of the records you listed are responsible for email in some way.
How do you currently receive and send emails for this domain?
Or did your Bluehost package include a mail server which you never used?
Comment 1 on Answer
I have emails hosted by another site, not Bluehost.
Bluehost used to be the web & email host but now, they're only holding my domain (registrar) and that's it.
My response to comment 1
But you still receive and send email via this domain the records are on?
Comment 1.1 on Answer
Domain is with Bluehost, the email for that domain is hosted by third-party and yes, I do use that email.
Based on u/digdilem 's comment, I should keep the TXT DKIM entry and delete the rest.
My response to comment 1.1
Well, if you have the mail system handled by a third-party, you can check in their admin center which DNS records they expect.
If the DKIM TXT is there, leave it, if not, delete it with the rest.
Reason being that the DKIM TXT has to point to the right key endpoint / use the right key to sign your messages. If your third-party uses another key, this particular DKIM TXT is useless.