Does the Zero Trust dashboard automatically add DNS entries for tunnels?

I’m trying to understand the Cloudflare Zero Trust Tunnels and I have a question.

When I’m creating my tunnel (using the web dashboard), it asks me for an optional subdomain. However, when I enter something that doesn’t exist it displays the following message:

Warning: No DNS record found for this domain. The policy may not execute as expected.

Is this expected? Am I supposed to define a CNAME/A record in the DNS before using the subdomain here?

1 Like

Are you creating a public hostname for the tunnel or for an access application?

I also often see this warning for my sub-domains…

But when I check the DNS dashboard, the sub-domain for the tunnel has been created…

1 Like

@Cyb3r-Jak3 I have the same question. And yes, it is for a Public Hostname

1 Like

When adding a public hostname to a tunnel, it should create the DNS record. But they are not created when creating access applications.

The very instant I type in a subdomain, it pops up the warning " Warning: No DNS record found for this domain. The policy may not execute as expected." I haven’t even selected a domain!?

Then after I put in the service Type/URL it flashed a red error (too fast to read), then show’s it completed.

I believe it’s working, and a DNS entry DOES get added. But something quirky is going on. And that warning is especially confusing because if I HAD a subdomain entry already in the DNS, it then gives an error not allowing it (which does make sense).

3 Likes