How to Remove Cloudflare Proxy on Shopify

Let’s start with a simple truth: Shopify does not let you directly control its core server infrastructure. When you host a store on Shopify, Shopify manages performance, security, certificates, caching, and traffic routing for you. That includes using reverse proxy technology and global content delivery to accelerate your store and protect it. You don’t have to manually configure it because Shopify is designed as a managed platform.

Cloudflare, on the other hand, is a powerful network and security layer that can sit between a visitor and a website. It routes traffic through its own servers, hides your origin IP, and applies caching and filtering. Some people describe that as a “proxy” because Cloudflare presents itself to visitors instead of your direct origin server.

Removing Cloudflare Proxy on Shopify: A Guide

So when we talk about “how to remove Cloudflare proxy on Shopify,” there are really two different situations we need to separate:

1. You are using Shopify normally on a standard Shopify domain setup, and you’re wondering if Cloudflare is involved (and if you can turn it off).
2. You have pointed a custom domain to Shopify through Cloudflare (instead of pointing it directly with your registrar), and you want to undo that setup so Cloudflare is not acting as the proxy for that domain anymore.

In the first case, you usually cannot “remove” Cloudflare-type behavior from Shopify because Shopify handles traffic the way it wants for performance and security reasons. You don’t get a toggle that says “disable proxy.” But in the second case, if you yourself put Cloudflare in front of your Shopify store with a custom domain, then yes  –  you can change your DNS so that traffic goes straight to Shopify without Cloudflare sitting in the middle.

This guide is focused on that second case: removing Cloudflare as the active proxy layer for a custom domain that points to Shopify.

We’ll walk through how the setup works, what changes when you turn off proxy mode, how to update DNS correctly, and what to watch out for so you don’t accidentally break checkout, SSL, or email. By the end, you’ll know exactly what to do and what not to do. We’ll also talk about when keeping a traffic management layer is actually good for you, and how services like managed proxy solutions (for example, proxy solutions) fit into the bigger technical picture of performance and traffic control.

How Domain Routing Works on Shopify (And Why Cloudflare Gets Involved)

When you connect a custom domain like yourstore.com to Shopify, Shopify asks you to update two essential DNS records at your domain registrar:

• An A record, which points the root domain (yourstore.com) to Shopify’s IP address.
• A CNAME record, which points the www subdomain (www.yourstore.com) to shops.myshopify.com (or a similar Shopify-controlled target).

If your domain is registered at places like GoDaddy, Namecheap, Google Domains, etc., you usually go into their DNS dashboard and enter those values directly. In this traditional setup, traffic flows like this:

Visitor → DNS resolves yourstore.com → Shopify IP → Shopify store

However, some store owners decide to manage DNS using Cloudflare instead of using the registrar’s DNS. Why? Cloudflare gives them more control: DDoS protection, caching, firewall rules, geo rules, analytics, and fast propagation of changes. In that case, the traffic path looks like this:

Visitor → Cloudflare → Shopify

That “Cloudflare → Shopify” hop is what people refer to when they mention “Cloudflare proxy.” Cloudflare sits in the middle. If you enable the orange cloud icon in your Cloudflare DNS panel for your A record or CNAME record, Cloudflare is actively proxying and inspecting that traffic.

If you’re in that model and you now want to remove Cloudflare from the path, you have to do two things:

1. Stop proxying through Cloudflare.
2. Make sure DNS still resolves to Shopify in a valid way that passes Shopify’s domain verification.

It sounds simple, but you have to do it in the right order so your store doesn’t go down.

Step-by-Step: How to Remove Cloudflare Proxy for a Shopify Custom Domain

Step 1. Confirm whether Cloudflare is actually in use

Before changing anything, make sure Cloudflare is really acting as a proxy for your domain. You might not even be using it.

Here’s how to tell:

1. Log in to your Cloudflare account (if you have one).
2. Select the domain you use for your Shopify storefront.
3. Go to DNS → Records.
4. Look at the A record for the root (yourstore.com) and the CNAME for www.

If the little cloud icon next to those records is orange, Cloudflare’s proxy is ON for that record. If the icon is gray, Traffic is just being passed through without proxying  –  that means Cloudflare is basically acting like a DNS provider only, not an active traffic layer.

If you don’t see your domain in Cloudflare at all, and your registrar DNS points directly to Shopify, then you’re not using Cloudflare as a proxy and there’s nothing to remove. Your Shopify setup is already direct.

Step 2. Turn off the proxy (disable the orange cloud)

If you see an orange cloud next to the records that point to Shopify, click it to turn it gray. When the cloud is gray, Cloudflare is no longer acting as an active reverse proxy. It’s now just providing DNS resolution.

Why this matters: when Cloudflare is orange/proxied, visitors hit Cloudflare first. When it’s gray/not proxied, visitors connect directly to the Shopify IP or Shopify hostname you set in that DNS record.

Important: after turning the cloud gray, give DNS time to propagate. Traffic will begin going directly to Shopify. At this point, your SSL may briefly refresh, because the certificate serving your store might switch from Cloudflare’s edge SSL to Shopify’s SSL.

Step 3. (Optional, but common) Move DNS off Cloudflare completely

Some store owners don’t want to keep Cloudflare in the loop at all  –  not even as a DNS manager. If that’s you, you can go back to using DNS from your registrar or another provider.

That process looks like this:

1. Sign in to the company where you originally bought the domain (registrar).
2. Go to the domain’s Nameservers settings. If you’re using Cloudflare, your nameservers are most likely set to two Cloudflare nameserver addresses.
3. Change those nameservers back to the registrar’s default nameservers (or to another DNS provider you control).
4. After switching nameservers, you’ll need to re-create Shopify’s required DNS records (A record and CNAME) in that new DNS panel.

This step removes Cloudflare fully: it’s no longer proxying and it’s no longer answering DNS for you. Traffic goes straight to Shopify based on standard DNS resolution.

Step 4. Re-verify the domain in Shopify

Inside your Shopify admin:

1. Go to Settings → Domains.
2. Select the custom domain you’re connecting.
3. Check Shopify’s status indicators. Shopify will tell you if the A record and CNAME are pointing correctly.
4. If Shopify says “Connected” or “Verified,” you’re fine. If not, it will show you exactly which DNS value is wrong.

Keep adjusting until Shopify confirms it can see your domain correctly.

Step 5. Test SSL and checkout

After removing Cloudflare as a proxy, you want to be 100% sure customers can still:

• Load your store over HTTPS without security warnings.
• Add products to cart.
• Go through the checkout.

To test this properly, open an incognito/private browser window and visit both yourstore.com and www.yourstore.com. Make sure both URLs load securely (look for the lock icon in the browser). Add an item to your cart, go to checkout, and confirm that no redirect loops happen.

If you see security warnings about certificates, that usually means the DNS changes have not fully propagated yet, or Shopify has not re-issued SSL for the domain after the proxy layer was removed. This often resolves on its own within a short period, but you should monitor it.

Pros and Cons of Removing Cloudflare From Your Shopify Domain

It’s easy to think: “Why even bother with Cloudflare at all? I’ll just point my domain straight to Shopify and stop overthinking it.” Sometimes that’s the correct move. But sometimes removing Cloudflare makes you lose benefits you didn’t even realize you had.

Here’s a comparison:

If your store deals with aggressive scraping, fake traffic, or high-volume seasonal spikes, keeping Cloudflare can act like a safety net and a performance booster. If your store is small, local, or you just don’t want the overhead of managing multiple dashboards, removing it can make life simpler.

There is no single “right” answer for everyone. The best approach depends on the size of your brand, your tolerance for complexity, and how much abuse your domain tends to attract.

Common Problems After Disabling Cloudflare Proxy (And How to Fix Them Fast)

When people turn off Cloudflare or move DNS away from it, they sometimes run into problems that feel scary at first but are actually very fixable. Let’s go through the usual ones you should be ready for.

1. SSL certificate shows “not secure.”

Why it happens: Before, Cloudflare was presenting its own SSL at the edge, instantly covering your domain. After switching off proxy, your domain is now expected to use Shopify’s SSL directly. If DNS hasn’t fully propagated, your browser might still be seeing a partial or mismatched certificate.

What to do: Give DNS changes time to settle, then recheck in an incognito window. Also go to Shopify → Settings → Domains and make sure Shopify shows the domain as “Connected” and “SSL provisioned.” If it says “SSL pending,” just allow it to finish.

2. Store loads on www but not on the root domain (or the opposite).

Why it happens: You pointed www.yourstore.com correctly with a CNAME to Shopify, but you forgot to update the A record for yourstore.com itself  –  or the other way around.

What to do: Make sure both records match Shopify’s instructions. You need:

• The root (A record) pointing to Shopify’s IP.
• The www (CNAME) pointing to the Shopify host they gave you.

3. Email delivery changed.

Why it happens: When you moved DNS away from Cloudflare, you may not have rebuilt some MX or TXT records that control email sending (especially if you’re using a custom sender domain for order confirmations, marketing newsletters, etc.).

What to do: In your new DNS control panel (registrar or other DNS host), make sure:

• MX records for your email provider (Google Workspace, Outlook 365, etc.) are still in place.
• SPF / DKIM TXT records are copied over.

If you forget this step, customers may stop receiving order confirmations, and your outbound domain reputation can suffer.

4. Payment apps or third-party integrations complain.

Why it happens: Some third-party payment or fraud-prevention tools rely on seeing the original visitor IP. When Cloudflare is removed, those IPs may show differently. Usually this resolves automatically, but you may have to update an allowlist, depending on the provider.

What to do: Check any payment gateways, anti-fraud tools, or tax calculation apps after you switch off proxy mode. Run one test order and see if they still approve/settle the payment instantly.

When You Should NOT Remove Cloudflare (Yet)

There are some cases where you might want to pause before removing Cloudflare as a proxy for your Shopify store. If any of these sound familiar, consider leaving it in place until you plan a controlled migration window:

• You’re running paid ads at very high scale and you’ve seen bot floods or click spam. Cloudflare can absorb and rate-limit that junk before it touches Shopify.
• You sell products that attract aggressive scraping of pricing and inventory. Cloudflare rules can slow that down by blocking abusive patterns.
• You have custom firewall logic (for example, blocking certain geographies entirely or challenging certain user agents).
• You rely on Cloudflare Workers or Transform Rules to rewrite headers or filter traffic.

If any of the above are critical to the way you operate, removing Cloudflare without planning an alternative can expose you to performance loss, inflated ad spend, or higher fraud risk overnight.

In these situations, a better approach is controlled reduction instead of instant removal. For example, you can selectively gray out certain DNS records while keeping others proxied, or you can gradually migrate individual protections into Shopify apps or other network-level tools you trust.

Practical Checklist: Safely Removing Cloudflare Proxy From Shopify

Here’s a clear, actionable list you can follow. Treat it like a mini playbook:

• Turn off the orange cloud in Cloudflare DNS for your A and CNAME records (they should go gray).
• Confirm A record for root domain and CNAME for www both match Shopify’s exact instructions.
• If you are leaving Cloudflare completely, update your nameservers at your registrar to stop using Cloudflare and recreate the same Shopify DNS records directly at the registrar.
• Go to Shopify → Settings → Domains and confirm domain status is “Connected” and SSL is active.
• Open an incognito browser and test:
  • yourstore.com
  • www.yourstore.com
  • Add to cart → Checkout
• Send yourself a test order confirmation email or marketing email to confirm DNS mail records still work.
• Monitor traffic, error rates, and checkout completion for the next few hours to catch any breakage early.

That’s all you actually need to do. If you can complete that list without errors, then effectively you have removed Cloudflare’s proxy layer from your Shopify domain.

Final Thoughts: Control vs. Convenience

At the end of the day, this decision is about control versus convenience. Keeping Cloudflare in front of Shopify gives you extra control. You get fine-grained visibility of traffic, you can shape behavior, and you can apply rules that Shopify alone does not expose at the storefront level. This matters a lot for stores at scale. It matters if you’re fighting bots. It matters if you’re expanding internationally and you want predictable performance and threat filtering.

Removing Cloudflare simplifies your life. Your DNS lives in one place. Your store points directly to Shopify. There’s no “mystery middle layer” to debug when something goes wrong. If you’re a smaller brand or you don’t have an in-house technical person, that simplicity is worth real money because downtime costs sales. Fewer moving parts means fewer surprises at 2 a.m.

There’s also a middle path: you can move away from Cloudflare’s full proxy but still make smart use of managed traffic tools when you actually need them. For example, controlled network routing and IP management can be handled by specialized proxy solutions that give you performance, stability, and targeting logic for specific workflows like analytics, QA testing, ad verification, or regional traffic evaluation  –  without forcing those rules directly onto your live store.

So here’s the honest summary: you absolutely can remove Cloudflare proxy from Shopify if you’re using Cloudflare for DNS, and you can do it safely. Just follow the steps, re-verify DNS, and retest checkout. But before you do, pause and ask yourself what Cloudflare was doing for you. If it was just “something I turned on one night,” feel free to switch it off. If it was quietly protecting your revenue, think twice and plan the transition instead of ripping it out instantly.

Need more ideas and information? Visit Din Studio’s blog and gain inspiration!

Related Post