How to connect my ipv6 only server to cloudflare?
I'm wondering, how can I connect my ipv6 server to cloudflare. I have a Rest-API service and a Website that is currently being hosted on it.
It is possible to use Cloudflare tunnel? I never worked with DNS pointed directly to my server IP, so I'm sorry is there anything, that I will not understand.
3 Replies
I'm wondering, how can I connect my ipv6 server to cloudflare. I have a Rest-API service and a Website that is currently being hosted on it.You can just make an proxied AAAA record and CF will connect to your origin over IPv6 and accept client conns v4/v6, magically. You'd need/want to configure ssl/tls certs though (Cf offers 15 year ones under ssl/tls -> origin server), and to open your firewall/port fowarded if needed.
It is possible to use Cloudflare tunnel? I never worked with DNS pointed directly to my server IP, so I'm sorry is there anything, that I will not understand.Tunnels can be an easy alternative and also solve that issue. You do need to modify their config a bit to work with IPv6-only though. You can get started with https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/get-started/create-remote-tunnel/ and if you're on Linux/systemd, after you install the service edit the tunnel config (ex,
sudo nano /etc/systemd/system/cloudflared.service
ex from:
ExecStart=/usr/bin/cloudflared --no-autoupdate tunnel run --token
to:
ExecStart=/usr/bin/cloudflared --no-autoupdate tunnel --edge-ip-version 6 run --token
Then a quick daemon reload and restart of the service sudo systemctl daemon-reload && sudo systemctl restart cloudflaredThank you a lot
what about, if I want to use sub-domain name? for example my rest api on a subdomain and my website on the main domain? It is just simple
AAAA server ipv6:port?
AAAA @ ipv6:80?
DNS Records don't contain ports. In a good setup, you'd just setup port 443 to listen on your web server, setup a certificate, ssl/tls -> overview to Full (Strict) and it'd just work
If you want to use tunnels, then you just add a public hostname for your tunnel