diff --git a/client.go b/client.go
index 5d74157..a9bda45 100644
--- a/client.go
+++ b/client.go
@@ -22,6 +22,10 @@ import (
 	sliceutil "github.com/projectdiscovery/utils/slice"
 )
 
+var (
+	DefaultMaxPerCNAMEFollows = 32
+)
+
 var internalRangeCheckerInstance *internalRangeChecker
 
 func init() {
@@ -62,6 +66,10 @@ func NewWithOptions(options Options) (*Client, error) {
 		knownHosts, _ = hostsfile.ParseDefault()
 	}
 
+	if options.MaxPerCNAMEFollows == 0 {
+		options.MaxPerCNAMEFollows = DefaultMaxPerCNAMEFollows
+	}
+
 	httpClient := doh.NewHttpClientWithTimeout(options.Timeout)
 
 	client := Client{
@@ -472,6 +480,7 @@ func (c *Client) Trace(host string, requestType uint16, maxrecursion int) (*Trac
 	msg.SetQuestion(host, requestType)
 	servers := RootDNSServersIPv4
 	seenNS := make(map[string]struct{})
+	seenCName := make(map[string]int)
 	for i := 1; i < maxrecursion; i++ {
 		msg.SetQuestion(host, requestType)
 		dnsdatas, err := c.QueryParallel(host, requestType, servers)
@@ -534,6 +543,10 @@ func (c *Client) Trace(host string, requestType uint16, maxrecursion int) (*Trac
 
 		// follow cname if any
 		if nextCname != "" {
+			seenCName[nextCname]++
+			if seenCName[nextCname] > c.options.MaxPerCNAMEFollows {
+				break
+			}
 			host = nextCname
 		}
 	}
diff --git a/options.go b/options.go
index df94050..7e0967e 100644
--- a/options.go
+++ b/options.go
@@ -20,6 +20,7 @@ type Options struct {
 	LocalAddrIP           net.IP
 	LocalAddrPort         uint16
 	ConnectionPoolThreads int
+	MaxPerCNAMEFollows    int
 }
 
 // Returns a net.Addr of a UDP or TCP type depending on whats required