Skip to content

Commit 432c73a

Browse files
ranbelranbel
committed
rdp dns record
1 parent 6f291b2 commit 432c73a

File tree

1 file changed

+28
-10
lines changed
  • src/content/docs/cloudflare-one/connections/connect-networks/use-cases/rdp

1 file changed

+28
-10
lines changed

src/content/docs/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser.mdx

Lines changed: 28 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ sidebar:
88
text: Beta
99
---
1010

11-
import { Render, GlossaryTooltip } from "~/components"
11+
import { Render, GlossaryTooltip, Details } from "~/components"
1212

1313
Users can connect to an RDP server without installing an RDP client or the [WARP client](/cloudflare-one/connections/connect-devices/warp/) on their device. Browser-based RDP leverages [Cloudflare Tunnel](/cloudflare-one/connections/connect-networks/), which creates a secure, outbound-only connection from your RDP server to Cloudflare's global network. Setup involves running the `cloudflared` daemon on the RDP server (or any other host machine within the private network) and routing RDP traffic over a public hostname.
1414

@@ -36,25 +36,43 @@ Browser-based RDP can be used in conjunction with [routing over WARP](/cloudflar
3636

3737
## 3. Create a DNS record
3838

39-
To connect to your RDP targets (i.e., your Windows machines), configure a DNS record (including the subdomain) that users will use for RDP connections. This domain will be used to access any targets that are available to users through your Access application (see Step 4).
39+
To make your RDP targets (that is, your Windows machines) available through the browser, you will need a [Cloudflare DNS record](/dns/manage-dns-records/how-to/create-dns-records/) for the domain and subdomain that users will connect to. This domain will be used to access any targets that are available to users through your Access application (see Step 4).
4040

41-
For example, if your Access application is configured with `rdp.example.com`, you must have an "A" or "AAAA" DNS record for `rdp.example.com` created.
41+
For example, if want users to connect to targets on `rdp.example.com`, [create a DNS record](/dns/manage-dns-records/how-to/create-dns-records/#create-dns-records) for `rdp.example.com`. You can create either an `A`, `AAAA`, or `CNAME` record:
4242

43-
To do this, go to the [Cloudflare dashboard](https://dash.cloudflare.com/login), select your domain, go to **DNS** > **Records** and verify that a [DNS record](/dns/manage-dns-records/how-to/create-dns-records/) exists for your desired RDP domain.
43+
<Details header="A record" open={false}>
44+
The following DNS record points your public subdomain (`rdp`) to the default IPv4 address range:
4445

45-
If you do not already have a DNS record, [create a new DNS record](/dns/manage-dns-records/how-to/create-dns-records/#create-dns-records). Using `rdp.example.com` for demonstration, create an `AAAA` record that points your public subdomain (`rdp`) to the IPv6 [discard address range](https://www.rfc-editor.org/rfc/rfc6666.html):
46+
- **Type**: _A_
47+
- **Name**: `rdp`
48+
- **IPv4 address**: `0.0.0.0`
49+
- **Proxy status**: On
50+
51+
</Details>
52+
53+
<Details header="AAAA record" open={false}>
54+
The following DNS record points your public subdomain (`rdp`) to the IPv6 [discard address range](https://www.rfc-editor.org/rfc/rfc6666.html):
4655

4756
- **Type**: _AAAA_
4857
- **Name**: `rdp`
4958
- **IPv6 address**: `100::`
5059
- **Proxy status**: On
5160

52-
The IP address does not require active use; it just needs to be valid. Cloudflare's RDP proxy will handle the routing to the correct target.
61+
</Details>
5362

54-
:::note
55-
If you choose to create a _CNAME_ DNS record instead, *the Target field must be a fully qualified domain name.* It is *NOT* the target ID that you created in step (2). Using the example above, `rdp` would be the record Name and the Target field would be `www.rdp.example.com`. Proxy status would also need to be set to "On."
56-
:::
63+
<Details header="CNAME record" open={false}>
64+
The following `CNAME` record points your public subdomain (`rdp`) to a fully qualified domain name.
65+
66+
- **Type**: _CNAME_
67+
- **Name**: `rdp`
68+
- **Target**: `www.rdp.example.com`
69+
- **Proxy status**: On
70+
71+
The CNAME **Target** field is unrelated to the RDP targets configured in Step 2.
72+
73+
</Details>
5774

75+
The DNS record does not need to point to an active destination IP address or hostname; the record just needs to be valid. Cloudflare's RDP proxy will handle the routing to the correct RDP target.
5876

5977
## 4. Create an Access application
6078

@@ -69,7 +87,7 @@ The IP address does not require active use; it just needs to be valid. Cloudflar
6987
7. <Render file="access/self-hosted-app/choose-domain" product="cloudflare-one" />
7088

7189
:::note
72-
You can only enable browser-based RDP on domains and subdomains, not for specific paths.
90+
You can only enable browser-based RDP on domains and subdomains, not for specific paths. The selected domain and subdomain must also have a corresponding DNS record (refer to [Step 3](#3-create-a-dns-record)).
7391
:::
7492

7593
8. Expand **Browser rendering settings**. In the **Browser rendering** dropdown, select _RDP_.

0 commit comments

Comments
 (0)