This kinda-sorta works as a form of DDoS mitigation, assuming that not all of your frontends go down at the same time. DNS propogation takes a bit, but this should mitigate the effects of DDoS attacks that only impact like, half your frontends. This should be run on an offsite machine with stellar uptime (DigitalOcean, Ramnode, Linode VPS, for example). Link: https://github.com/vemacs/cloudflare-autorotate Instructions: Clone the repo somewhere Install python-pip and python-dev for your distro, then sudo pip install pyyaml pyflare Copy config.yml.example to config.yml, fill that in (you can find API key in Cloudflare account details) run python updaterecords.py in a tmux session (or similar) I'd like some feedback and testing before I release it as a resource. Bugs are the program will wait until the next scheduled task is done before exiting in the case of a SIGTERM.