DNS Automation (Public API)
Gateway DNS is managed by Public API automation and network settings in Dash.
Gateway runtime itself does not host a Cloudflare management UI.
Network domain claims
When a network claims a domain, API returns TXT verification instructions and gateway DNS guidance.
Example outputs include:
- TXT:
_uebliche.<domain> - Gateway CNAME guidance:
<domain> -> gateway.uebliche.net
If network Cloudflare automation is configured, API can upsert these records automatically.
Gateway base-domain records
When global gateway DNS automation is configured, API can maintain shared gateway host records such as:
gateway.uebliche.net<gatewayId>.gateway.uebliche.net
based on gateway heartbeat/admin updates.
Route host A-record sync
When Connect publishes route ownership and the route host belongs to the configured Cloudflare zone, API can auto-upsert route host A records to active gateway public IPs.
API configuration knobs
Public API environment settings:
CONNECT_GATEWAY_DNS_BASE_DOMAIN(defaultgateway.uebliche.net)CONNECT_GATEWAY_CLOUDFLARE_ZONE_IDCONNECT_GATEWAY_CLOUDFLARE_API_TOKEN(or..._FILE)
For network-level token storage encryption:
CONNECT_CLOUDFLARE_TOKEN_KEY(or..._FILE)
Operational note
Treat Cloudflare API tokens as secrets. Store them only in encrypted API storage and secret managers, not in gateway node files.