Cloudflare's name comes up constantly in web infrastructure conversations, partly because it offers several distinct products that often get talked about as if they're one thing.
A content delivery network caches copies of your site's static content (images, CSS, scripts) on servers distributed around the world, so a visitor in another country loads your site from a nearby server instead of one that might be halfway across the planet. This is the part of Cloudflare most people mean when they say they "use Cloudflare" — it's largely invisible day-to-day, it just makes the site faster.
The web application firewall inspects incoming requests for attack patterns — SQL injection attempts, cross-site scripting, malicious bots — and blocks them before they ever reach your actual server. This is a genuinely separate function from the CDN, even though both sit in front of your site at the network level.
Cloudflare also offers DNS hosting, which is the system that translates your domain name into the actual server address a browser connects to. Using Cloudflare's DNS alongside their CDN and WAF is common because it lets all three work together seamlessly, but DNS itself is a distinct service you could technically use without the other two.
Using all three from one provider means traffic gets DNS-resolved, filtered through the WAF, and served from the CDN cache in one continuous path, without handing traffic between different vendors' systems at each step — which is both faster and simpler to manage than stitching together separate providers for each function.
A small site with light traffic benefits most from the CDN (speed) and a basic WAF tier (security) — DNS matters mainly once you need advanced routing or failover capabilities beyond what your domain registrar's default DNS offers.