Cloudflared

From ArchWiki
Jump to navigation Jump to search

Cloudflared may be used to run a local DNS over HTTPS server (DoH), i.e., a stub resolver.

Installation

Install the cloudflared-binAUR package.

Configuration

Create the following file, replacing <endpoint> with preferred endpoints:

/etc/cloudflared/cloudflared.yml
proxy-dns: true
proxy-dns-upstream:
 - <endpoint>
 - <endpoint>
 - <endpoint>
proxy-dns-port: 53
proxy-dns-address: 0.0.0.0

As per upstream documentation, here are the available endpoints:

Endpoints Description
 - https://1.0.0.1/dns-query
 - https://1.1.1.1/dns-query
 - https://2606:4700:4700::1111/dns-query
 - https://2606:4700:4700::1001/dns-query
Standard
 - https://security.cloudflare-dns.com/dns-query
Standard, but blocks malware
 - https://family.cloudflare-dns.com/dns-query
Standard, but blocks malware and porn

Usage

Start and enable cloudflared@cloudflared.service. Now you can use your device's IP address as a DNS server.

Tip: Use 1.1.1.1/help to check if browser is using Cloudflare DoH.

See also