scubbo/cloudflaredtunneldns
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
6 Commits 1 Branch 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Jack Jackson 24dedc8a3d Push to gitea-managed repo
2022-09-29 16:30:49 -07:00
.drone.yml
Push to gitea-managed repo
2022-09-29 16:30:49 -07:00
dns_update.sh
Enable options for certificate and domain
2022-08-22 14:08:03 -07:00
Dockerfile
First commit
2022-08-19 16:51:47 -07:00
README.md
Add README
2022-08-22 15:59:27 -07:00

README.md

Overview

This is a tool to allow updating Cloudflare Tunnels - both adding a service to the tunnel, and updating the DNS entries for the external name of that service - in a single deployment. Add it to a Kubernetes deployment as follows:

initContainers:
- name: dns-setter
  image: <location of image>
  command: [ "/bin/bash", "-c", "--" ]
  args: [ "./dns_update.sh --config <path_to_config> --cert <path_to_cert> --domain <your root domain>"]

with Volume Mounts that provide the config and certificates.

More detail

Cloudflare Tunnels allow you to make services accessible to the external Internet without directly exposing your ports, by forwarding requests via a locally-running daemon which connects to (and is protected by) Cloudflare's global infrastructure.

Unfortunately, the process of exposing a new service requires two steps:

  1. The mapping between "external addressable name" and "internal service" is added to the Cloudflare Tunnel configuration.
  2. A DNS entry for the external addressable name (pointing to the tunnel's UUID-based name) is published.

If the DNS entries are provided by Cloudflare's own DNS servers, Step 2 can be achieved by using the Cloudflare Tunnel tool: cloudflared tunnel route dns <tunnel_name> <domain_name>. However, executing this for all the sites defined in the Cloudflared config file would require some parsing, and the cloudflare/cloudflared image does not support installing tools like yq.

This tool parses the Cloudflared config file and uses the cloudflared tool to update DNS records for all configured names, meaning that a single deployment can carry out both update steps.

TODOs

  • Extend my Drone pipeline to push a pre-built image to DockerHub for broader usability.
  • Use Cloudflare API to determine which records have already been set to prevent unnecessary no-op updates.
Description
No description provided
Readme 38 KiB
Languages
Shell 62.2%
Dockerfile 37.8%