You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/dns/internal-dns/get-started.mdx
+5-14Lines changed: 5 additions & 14 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -16,6 +16,7 @@ Although there are some steps that can be achieved on the dashboard, currently t
16
16
<Renderfile="internal-dns-beta-note" />
17
17
18
18
- Make sure you have an Enterprise account with access to [Gateway resolver policies](/cloudflare-one/policies/gateway/resolver-policies/) and [Internal DNS](/dns/internal-dns/).
19
+
- Consider the different ways in which you can [connect to Gateway resolver](/dns/internal-dns/connectivity/).
19
20
- If you are not familiar with how to use Cloudflare API, refer to [Fundamentals](/fundamentals/api/get-started/).
20
21
- If you will be using an API token for authentication, make sure you have the following permissions:
21
22
@@ -90,21 +91,11 @@ Besides selecting an internal DNS view when setting up your resolver policies, y
90
91
91
92
</TabItem> <TabItemlabel="API">
92
93
93
-
Use the API endpoints under [Zero Trust > Gateway > Rules](/api/resources/zero_trust/subresources/gateway/subresources/rules/) to set up resolver policies. Use the rule settings object to define `resolve_dns_internally`, specifying `view_id` and `fallback` option.
94
+
Use the API endpoints under [Zero Trust > Gateway > Rules](/api/resources/zero_trust/subresources/gateway/subresources/rules/) to set up resolver policies. Use the rule settings object to define `resolve_dns_internally`, specifying `view_id` and `fallback` option. The fallback options behave as follows:
94
95
95
-
-`"fallback": "none"`: Gateway DNS resolver returns the response as-is to the client.
96
-
-`"fallback": "public_dns"`: In case the response from the internal zone is REFUSED, NXDOMAIN, or a response with a CNAME type, Gateway DNS resolver sends the query to Cloudflare 1.1.1.1 public resolver and tries to resolve the query via public DNS.
96
+
-`none`: Gateway DNS resolver returns the response as-is to the client.
97
+
-`public_dns`: In case the response from the internal zone is REFUSED, NXDOMAIN, or a response with a CNAME type, Gateway DNS resolver sends the query to Cloudflare 1.1.1.1 public resolver and tries to resolve the query via public DNS.
97
98
98
99
For guidance about selectors, operators, and values, refer to [Gateway](/cloudflare-one/policies/gateway/resolver-policies/#selectors).
99
100
100
-
</TabItem> </Tabs>
101
-
102
-
---
103
-
104
-
## Connectivity
105
-
106
-
The internal DNS queries can be sent using different configurations:
107
-
108
-
- Via [WARP](/cloudflare-one/connections/connect-devices/warp/).
109
-
- Using any of the DNS endpoints supported with [DNS locations](/cloudflare-one/connections/connect-devices/agentless/dns/locations/).
110
-
- With any of the available [Magic WAN on-ramps](/magic-wan/on-ramps/).
0 commit comments