Can a single `cloudflared` service serve as both a proxy-dns and a tunnel?

Currently I have linux setup to create a service for proxy-dns, and another service for the tunnel. I am wondering if it is possible to create one service for both?

If you’re asking what I think you’re asking, then no.

I have a Linux box that acts as a DNS proxy to Cloudflare DNS 1.1.1.1. But I also an inbound configuration for SSH. I have two very different looking configuration files.

I’m actually not sure the “no” is correct, as cloudflared tunnel --help produces this flag:

   --proxy-dns                                         Run a DNS over HTTPS proxy server. (default: false) [$TUNNEL_DNS]
   --proxy-dns-port value                              Listen on given port for the DNS over HTTPS proxy server. (default: 53) [$TUNNEL_DNS_PORT]
   --proxy-dns-address value                           Listen address for the DNS over HTTPS proxy server. (default: "localhost") [$TUNNEL_DNS_ADDRESS]
   --proxy-dns-upstream value                          Upstream endpoint URL, you can specify multiple endpoints for redundancy. (default: "https://1.1.1.1/dns-query", "https://1.0.0.1/dns-query")  (accepts multiple inputs) [$TUNNEL_DNS_UPSTREAM]
   --proxy-dns-max-upstream-conns value                Maximum concurrent connections to upstream. Setting to 0 means unlimited. (default: 5) [$TUNNEL_DNS_MAX_UPSTREAM_CONNS]
   --proxy-dns-bootstrap value                         bootstrap endpoint URL, you can specify multiple endpoints for redundancy. (default: "https://162.159.36.1/dns-query", "https://162.159.46.1/dns-query", "https://[2606:4700:4700::1111]/dns-query", "https://[2606:4700:4700::1001]/dns-query")  (accepts multiple inputs) [$TUNNEL_DNS_BOOTSTRAP]

With zero documentation about it anywhere besides that.

1 Like