UBNT EdgeRouter X 设置cloudflare的DDNS (ddclient)配置

已于 2024-02-19 22:43:31 修改
阅读量2.2k 收藏 11
点赞数 30
文章标签: linux 计算机网络
于 2024-02-19 22:41:27 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/whgjjim/article/details/136179117
版权

1、背景

        首先,cloudflare虽然没说支持ddns,官网也没相关的配置文档和说明。但是其实它是支持ddns的,csdn上面有很多文章,它们的核心思想都是使用cloudflare提供的api进行更新域名ip。比如:

利用CloudFlare自动DDNS - WhatZ - 博客园icon-default.png?t=N7T8https://www.cnblogs.com/whatzblog/p/13335269.html利用CloudFlare Api实现DDNS-YuNi Blogicon-default.png?t=N7T8https://ayw.ink/3057.html        但是找了一圈,都没有找到有人使用ddclient来进行ddns的配置。实测发现,ddclient也是支持cloudflare的。并且因为ddclient是专用于ddns的工具,一来更专业,二来它支持多个平台(比如namecheap、dyndns等等),就可以实现多平台统一管理和批量更新,非常方便。

2、开始配置

        ddclient工具,它是一个用perl写的脚本,可以直接用记事本软件打开修改,所以各个设备系统里面的ddclient工具的版本不尽相同。即便版本号相同,代码也不一定完全一样。所以我这边上传了一个可用的ddclient工具,传送门。这个版本是从ubnt里面拿出来的,里面含nic_cloudflare_update函数,所以它是支持cloudflare的。

2.1 ddcllient配置脚本

使用如下配置,即可实现cloudflare的ddns更新:

#cat ddclient_pppoe0.conf

server=api.cloudflare.com/client/v4,protocol=cloudflare
max-interval=28d
zone=XXXXX.eu.org
login=XXXXXX@163.com
password='f952ebac4aa__6558b81dfe84bcb8'
XXXXX.eu.org

上面的`server=...`开始的部分,就是配置内容。
这里的server、max-interval是固定值;
zone是需要更新的域名;
login是cloudflare的登录邮箱;
password是cloudflare的全局 Token:
        进入 Overview 界面,可以在右下角找到 Get your API token 的链接

20230306052801977

        点击 Global API Key 的 View

20230306052802867

        输入密码和验证码,即可获得 你的Token

2.2 ubnt EdgeRouter X 设置cloudflare的DDNS

因为我的设备是ubnt EdgeRouter X,它是用vyatta来配置ddclient的,并非直接手动配置的ddclient。所以这里再额外介绍一下,如何在edgerouterX中设置。

步骤其实也非常简单:

第一步:点config_tree;
第二步:在dns->dynamic->interface->pppoe0->service下面创建菜单,可以取名cloudflare;
第三步:添加配置。注意这里必须要在options里添加zone参数;其他参数怎么填可以看2.1节;

d3. ddclient更新cloudflare的ddns的步骤过程

root@ubnt:/usr/sbin# /usr/sbin/ddclient-ubnt -file /etc/ddclient/ddclient_pppoe0.conf -debug -foreground -verbose
DEBUG:    get_ip: using if, pppoe0 reports 171.88.175.XX
INFO:     forcing updating XXXX.eu.org because no cached entry exists.
DEBUG:
DEBUG:     nic_cloudflare_update -------------------
INFO:     setting IP address to 171.88.175.XX for XXXX.eu.org
UPDATE:   updating XXXX.eu.org
DEBUG:    proxy  =
DEBUG:    url    = https://api.cloudflare.com/client/v4/zones?name=XXXX.eu.org
DEBUG:    server = api.cloudflare.com
CONNECT:  api.cloudflare.com
CONNECTED:  using SSL
SENDING:  GET /client/v4/zones?name=XXXX.eu.org HTTP/1.0
SENDING:   Host: api.cloudflare.com
SENDING:   User-Agent: ddclient-ubnt/3.8.3
SENDING:   Connection: close
SENDING:   X-Auth-Email: w__heng@163.com
SENDING:   X-Auth-Key: f9752ebac4aa7_a6558b81dfe84bcb8
SENDING:   Content-Type: application/json
SENDING:
RECEIVE:  HTTP/1.1 200 OK
RECEIVE:  Date: Mon, 19 Feb 2024 14:28:10 GMT
RECEIVE:  Content-Type: application/json
RECEIVE:  Connection: close
RECEIVE:  CF-Ray: 857f31d98e7_9dc-SJC
RECEIVE:  CF-Cache-Status: DYNAMIC
RECEIVE:  Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
RECEIVE:  Expires: Sun, 25 Jan 1981 05:00:00 GMT
RECEIVE:  Set-Cookie: __cflb=0H28vgHxwvgAQtjU_FqYFDiSDreGJnUp7iBHUiqu5X; SameSite=Lax; path=/; expires=Mon, 19-Feb-24 16:58:11 GMT; HttpOnly
RECEIVE:  Strict-Transport-Security: max-age=31536000
RECEIVE:  Pragma: no-cache
RECEIVE:  X-Content-Type-Options: nosniff
RECEIVE:  X-Frame-Options: SAMEORIGIN
RECEIVE:  Set-Cookie: __cfruid=0bdb04c42e64adce_329e189796c24307687e-1708352890; path=/; domain=.api.cloudflare.com; HttpOnly; Secure; SameSite=None
RECEIVE:  Server: cloudflare
RECEIVE:
RECEIVE:  {"result":[{"id":"0c03eaca_2c0384e_db8bee3701","name":"XXXX.eu.org","status":"active","paused":false,"type":"full","development_mode":0,"name_servers":["louis.ns.cloudflare.com","ullis.ns.cloudflare.com"],"original_name_servers":["rene.ns.cloudflare.com","katelyn.ns.cloudflare.com"],"original_registrar":null,"original_dnshost":null,"modified_on":"2024-02-18T22:11:25.351435Z","created_on":"2024-02-18T10:05:04.328447Z","activated_on":"2024-02-18T22:11:25.351435Z","meta":{"step":2,"custom_certificate_quota":0,"page_rule_quota":3,"phishing_detected":false,"multiple_railguns_allowed":false},"owner":{"id":null,"type":"user","email":null},"account":{"id":"0469c6c_3903b08151aad350a4d56","name":"W._heng@163.com's Account"},"tenant":{"id":null,"name":null},"tenant_unit":{"id":null},"permissions":["#lb:edit","#lb:read","#waf:read","#waf:edit","#organization:read","#organization:edit","#vectorize:read","#vectorize:edit","#query_cache:read","#query_cache:edit","#integration:edit","#access:read","#access:edit","#integration:read","#integration:install","#waitingroom:read","#waitingroom:edit","#magic:read","#magic:edit","#dex:read","#analytics:read","#dex:edit","#zone_settings:read","#zone_settings:edit","#dns_records:read","#dns_records:edit","#worker:edit","#zone_versioning:read","#zone_versioning:edit","#ssl:edit","#zaraz:publish","#ssl:read","#worker:read","#logs:edit","#billing:read","#fbm:edit","#fbm:read","#fbm_acc:edit","#logs:read","#http_applications:read","#http_applications:edit","#blocks:read","#blocks:edit","#api_gateway:read","#api_gateway:edit","#zaraz:edit","#zaraz:read","#stream:read","#stream:edit","#teams:read","#teams:edit","#healthchecks:read","#web3:read","#web3:edit","#r2_bucket:read","#r2_bucket:edit","#image:read","#image:edit","#healthchecks:edit","#dash_sso:edit","#dash_sso:read","#teams:pii","#page_shield:read","#page_shield:edit","#zone:edit","#zone:read","#billing:edit","#teams:report","#subscription:edit","#app:edit","#subscription:read","#cache_purge:edit","#auditlogs:read","#member:edit","#member:read","#legal:read","#legal:edit"],"plan":{"id":"0feeeeeeeeeeee_eeeeeeeeeeeeeee","name":"Free Website","price":0,"currency":"USD","frequency":"","is_subscribed":false,"can_subscribe":false,"legacy_id":"free","legacy_discount":false,"externally_managed":false}}],"result_info":{"page":1,"per_page":20,"total_pages":1,"count":1,"total_count":1},"success":true,"errors":[],"messages":[]}
INFO:     zone ID is 0c03eaca_2c0384e_db8bee3701
DEBUG:    proxy  =
DEBUG:    url    = https://api.cloudflare.com/client/v4/zones/0c03eaca_2c0384e_db8bee3701/dns_records?type=A&name=XXXX.eu.org
DEBUG:    server = api.cloudflare.com
CONNECT:  api.cloudflare.com
CONNECTED:  using SSL
SENDING:  GET /client/v4/zones/0c03eaca_2c0384e_db8bee3701/dns_records?type=A&name=XXXX.eu.org HTTP/1.0
SENDING:   Host: api.cloudflare.com
SENDING:   User-Agent: ddclient-ubnt/3.8.3
SENDING:   Connection: close
SENDING:   X-Auth-Email: w__heng@163.com
SENDING:   X-Auth-Key: f9752ebac4aa7_a6558b81dfe84bcb8
SENDING:   Content-Type: application/json
SENDING:
RECEIVE:  HTTP/1.1 200 OK
RECEIVE:  Date: Mon, 19 Feb 2024 14:28:11 GMT
RECEIVE:  Content-Type: application/json
RECEIVE:  Connection: close
RECEIVE:  CF-Ray: 857f31e38b4ecf87-SJC
RECEIVE:  CF-Cache-Status: DYNAMIC
RECEIVE:  Set-Cookie: __cflb=0H28vgHxwvgAQtjUG_DiSDreGJnUpT7XK6Mq7cZ; SameSite=Lax; path=/; expires=Mon, 19-Feb-24 16:58:12 GMT; HttpOnly
RECEIVE:  Vary: Accept-Encoding
RECEIVE:  Set-Cookie: __cfruid=aecbf18360b338dc_3a63acedd5f589448-1708352891; path=/; domain=.api.cloudflare.com; HttpOnly; Secure; SameSite=None
RECEIVE:  Server: cloudflare
RECEIVE:
RECEIVE:  {"result":[{"id":"9065882_744b59832de1e47c0b","zone_id":"0c03eaca_2c0384e_db8bee3701","zone_name":"XXXX.eu.org","name":"XXXX.eu.org","type":"A","content":"171.88.175.XX","proxiable":true,"proxied":false,"ttl":60,"locked":false,"meta":{"auto_added":false,"managed_by_apps":false,"managed_by_argo_tunnel":false,"source":"primary"},"comment":null,"tags":[],"created_on":"2024-02-19T01:22:19.547443Z","modified_on":"2024-02-19T07:50:47.797083Z"}],"success":true,"errors":[],"messages":[],"result_info":{"page":1,"per_page":100,"count":1,"total_count":1,"total_pages":1}}
INFO:     DNS record ID is 9065882_b220744b59832de1e47c0b
DEBUG:    proxy  =
DEBUG:    url    = https://api.cloudflare.com/client/v4/zones/0c03eaca_2c0384e_db8bee3701/dns_records/9065882_b220744b59832de1e47c0b
DEBUG:    server = api.cloudflare.com
CONNECT:  api.cloudflare.com
CONNECTED:  using SSL
SENDING:  PATCH /client/v4/zones/0c03eaca_2c0384e_db8bee3701/dns_records/9065882_b220744b59832de1e47c0b HTTP/1.0
SENDING:   Host: api.cloudflare.com
SENDING:   User-Agent: ddclient-ubnt/3.8.3
SENDING:   Connection: close
SENDING:   X-Auth-Email: w__heng@163.com
SENDING:   X-Auth-Key: f9752ebac4aa7_a6558b81dfe84bcb8
SENDING:   Content-Type: application/json
SENDING:   Content-Length: 27
SENDING:
SENDING:   {"content":"171.88.175.XX"}
RECEIVE:  HTTP/1.1 200 OK
RECEIVE:  Date: Mon, 19 Feb 2024 14:28:12 GMT
RECEIVE:  Content-Type: application/json
RECEIVE:  Connection: close
RECEIVE:  CF-Ray: 857f31ebba7f7af1-SJC
RECEIVE:  CF-Cache-Status: DYNAMIC
RECEIVE:  Set-Cookie: __cflb=0H28vgHxwvgAQtjU_iSDreG_pcpCKuBKit5; SameSite=Lax; path=/; expires=Mon, 19-Feb-24 16:58:13 GMT; HttpOnly
RECEIVE:  Vary: Accept-Encoding
RECEIVE:  Set-Cookie: __cfruid=3813146aefe83f92_6c73c09e5be47194983b-1708352892; path=/; domain=.api.cloudflare.com; HttpOnly; Secure; SameSite=None
RECEIVE:  Server: cloudflare
RECEIVE:
RECEIVE:  {"result":{"id":"9065882_b220744b59832de1e47c0b","zone_id":"0c03eaca_2c0384e_db8bee3701","zone_name":"XXXX.eu.org","name":"XXXX.eu.org","type":"A","content":"171.88.175.XX","proxiable":true,"proxied":false,"ttl":60,"locked":false,"meta":{"auto_added":false,"managed_by_apps":false,"managed_by_argo_tunnel":false},"comment":null,"tags":[],"created_on":"2024-02-19T01:22:19.547443Z","modified_on":"2024-02-19T07:50:47.797083Z"},"success":true,"errors":[],"messages":[]}
SUCCESS:  XXXX.eu.org -- Updated Successfully to 171.88.175.XX

(里面关键信息已经使用下划线打码。)

可以看到上面大致是3个步骤:

1. 使用GET /client/v4/zones?name=XXX获取账户的个人信息。主要是提取zone_id;
2. 使用GET /client/v4/zones/0c03eaca_2c0384e_db8bee3701/dns_records?tyXXX获取dns_id;
3. 使用PATCH /client/v4/zones/0c03eaca_2c0384e_db8bee3701/dnsXXXX更新该dns的ip;

EdgeRouter X设置外网远程访问和HTTPS连接指定出口网关
weixin_34355715的博客
06-12 7616
EdgeRouter X虽然小巧,但功能强大,为方便远程管理,必须对防火墙进行设置,允许从外部进行访问,由于公网的80、443端口都已被运营商关闭,必须设置端口转发才能从外部访问。一、设置外网远程访问通过浏览器进入ERX的WEB设置主界面,点击防火墙/NAT选项卡,进行下面的设置。1、设置端口转发,如下图所示,从外部访问公网的5678端口将转发到内网网关的443端口。2、添加...
Ubuntu环境下交叉编译Ubnt EdgeRouter ER-X的SS
热门推荐
yangg1991的博客
08-19 1万+
1、在虚拟机中安装ubuntu-14.04.5-desktop-amd64 LTS 2、添加所需的源 vi /etc/apt/sources.list  deb http://www.emdebian.org/debian stable main 3、更新源索引 apt-get update 4、安装必须的libgmp3c2依赖 wget http://th.archiv
UBNT Unifi设置动态DNS
kechundu的博客
12-26 519
UNBT ddns的实际逻辑就是dns服务商提供api接口,让UNBT路由器可以通过接口来修改二级域名对应的路由器当前外网IP。因为ubnt(Network 8.0以上)支持的国内DDNS商有DNSPOD,所以先将自有域名纳入DNSPOD里面管理。
手把手教你在群晖中设置阿里云DDNS
最新发布
zhu_cheng_gong的博客
03-29 1776
回到认证管理页,可以看到一开始已有一个accesskey id了,但是看不到密码,而且这个密码也无法再重新查看了,只能后面新建一个Accesskey id。安装完毕后,打开docker,并单机注册表,然后搜索“aliyun",选择第一个搜索结果aliyun-ddns-cli并按第一行的下载,下载该映像。输入手机验证码,并单击确定 ,然后会弹出新建的id和secret,这里务必要记好,一旦关闭后在阿里云就再也找不到查看secret的地方了。​编辑 在左侧单机映像,然后选中刚刚下载的映像,单机第一行的启动。
利用Cloudflare搭建DDNS教程(Ubuntu&Debian&Alpine系统)
RP337的博客
05-16 4709
Alpine 使用的是 crond 服务,配置文件为 /etc/crontabs/root。这行代码的意思是每隔 2 分钟执行一次 /root/cf-v4-ddns.sh 脚本,并将标准输出和错误输出重定向到 /dev/null。Global API Key,在页面下方找到 Global API Key,点击右侧的 View 查看 Key,并保存下来。原创,属于记录,因为有很多东西,长时间不用,就忘记了,因此有了本文,各位也可以借鉴本文,本文只描述这个过程!IP地址处写1.1.1.1。
CloudFlareDDNS, 使用CloudFlare创建你自己的DDNS服务.zip
09-18
CloudFlareDDNS, 使用CloudFlare创建你自己的DDNS服务 CloudFlareDDNS使用CloudFlare创建你自己的DDNS服务。updateCloudFlare.php 将允许你使用 CloudFlare API和API密钥更新CloudFlare帐户中现有的DNS记录。使用你自己
使用cloudflare worker实现DDNS
炎黄的专栏
03-02 1010
Cloudflare Workers 是一个无服务器计算平台,允许您在 Cloudflare 的边缘网络上部署和运行代码,无需管理服务器。Cloudflare Workers 官方文档Workers 快速入门指南。
EdgeRouterX配置option43使用华为AP连接远程AC的方法
zucheng10的专栏
01-19 937
EdgeRouterX路由配置华为Ap的option43: 前提:已配置好名为LAN的192.168.5.0/24以太网,开启DHCP; 打开CLI命令配置步骤如下: configure set servicedhcp-server global-parameters "option option43 code 43 = string;" set servicedhcp-ser
EdgeRouter路由器配置手册教程EdgeOS_UG.pdf
03-01
EdgeRouter路由器配置手册教程
ER-X简单上网配置参考(新)+修改用户名密码
07-14
完成上述配置后,将ER-X的eth0口连接到光猫,eth1至eth4端口连接到电脑或其他网络设备,并确保这些设备设置为自动获取IP地址。 #### 四、修改登录用户名与密码 为了提高安全性,建议修改默认的登录用户名和密码。...
ubnt unifi AP AC PRO设置教程
07-14
在这个文档中,我们了解到如何设置ubnt unifi AP AC PRO。这是一个专门为新手设计的教程,通过图文解说,使其简单易懂。 首先,我们需要在百度上搜索并下载JRE(Java Runtime Environment)。这是因为Ubiquiti的...
cloudflare-ddns:通过Docker的Cloudflare DDNS
04-10
适用于Docker的Cloudflare DDNS 一个简单的Docker应用程序,该应用程序以设置的间隔运行,以检查和更新YAML配置文件中的指定DNS记录。 与Docker一起运行 使用下面的docker run命令从存储库中提取预先构建的容器,并开始动态更新您的DNS记录! AMD64 docker run -d \ --name cloudflare_ddns --restart=on-failure \ -v "$PWD:/code/config" \ docker pull ghcr.io/shrunbr/cloudflare-ddns:stable ARM64v8 docker run -d \ --name cloudflare_ddns --restart=on-failure \ -v "$PWD:/code/config" \ docker
cloudflare-ddns.js:仅通过调用URL即可更新Cloudflare记录的Node脚本
05-16
Cloudflare DDNS 仅通过调用URL即可更新Cloudflare记录的Node脚本 如何使用 向此URL发出GET请求: http://ddns.yourserver.com/:secret/:ip 用您的密钥替换:secret ,并用新IP替换:secret :ip 。 你应该得到这样的东西: http://ddns.yourserver.com/RGIz3lct2R25lHNks4b3/127.0.0.1 如何设定 git clone git@github.com:th3m4ri0/cloudflare-ddns.js.git npm install export API_KEY= export EMAIL= export SECRET= export DOMAIN= export SUBDOMAIN= node index.js 如何在Heroku上进行设置 使
阿里云和cloudflareDDNS
06-29
1.修改exec_ddns.py中的ali和flare为你自己对应的密钥。 2.脚本放到服务器,配置任务计划,比如每隔5分钟执行一次。
Cloudflare-DDNS:用于Cloudflare的简单DynDNS API,用于自托管| QNAP与Synology NAS的理想选择
05-24
Cloudflare-DDNS 用于Cloudflare的简单DynDNS API,用于自托管| QNAP与Synology NAS的理想选择 有了这个小巧但美观的界面,就可以托管自己的api以便在QNAP或Synology NAS系统上为您的DynDNS使用Cloudflare域该API使用JSON和QNAP和Synology系统的匹配状态代码进行响应 需要的信息: Cloudflare帐户电子邮件 Cloudflare(不是Origin CA密钥) Cloudflare域(例如example.com ) DNS记录(如my-ddns.example.com ) 适用于QNAP NAS的DynDNS Network- and Virtual Switch -> DDNS > Add -> Select DNS server: Customized https://api.ex
cloudflare-ddns-script:CloudFlare ddns 树莓派IPV6 DDNS解决方案
05-06
CloudFlare DDNS script/Raspberry pi IPV6 DDNS Solution cloudflare ddns 脚本/树莓派IPV6 DDNS解决方案 中文 | 更新 概述 本脚本是基于cloudflare API的DDNS脚本,支持IPV4和IPV6,可通过网络方式和本地方式获取脚本安装主机的IP地址,理论支持所有使用linux系统的主机,已在debian和ubuntu上测试可用。 使用脚本前需要做的 一台可联网的liunx设备 拥有一个域名,免费的或者收费的都可以(中国大陆的域名需要备案) 注册一个CloudFlare账户 ( ), 并将需要使用的域名添加到账户上,完成配置后根据需要添加服务设备的IPV6地址添加一个AAAA解析,并设为仅进行DNS解析 查询CloudFlare账户的Globel API Key并记录下来,用于后续配置 使用方法 打开命令
EdgeRouter ER-X 定时自动重启设置
的米-漠石's Blog
07-17 9994
可以使用 Configuration 中的 system/task-scheduler 来配置自动重启。这里的 task-scheduler 应该就是对 Debian 系统中的 Crontab 的封装,并保存到路由器的配置文件夹中,这样在系统升级后,也可以不受影响。 在配置前,请确认系统的时间设置是否正确,默认应该 UTC,你可以修改时区与本地时间相一致。 然后,在 /
【干货】使用ddclient配置dynv6的ddns服务
tty59
10-19 7348
dynv6官方推荐使用ddclient实现上报IP地址的功能,免去手写定时脚本与构造API URL的麻烦,然而官方提供的配置文件示例根本不能用。。。百度搜了圈,似乎没人对这个问题有明确的解释,最后查阅了ddclient官方的一些issue后总结出如下模板。需要注意的是我只有公网V6地址,因此这个配置只上报了V6地址。 daemon=30m ssl=yes # 官方示例就是少了这行导致ddclient报错 protocol=dyndns2 usev6=if, if=<eth> # 将<
梅林固件启用自定义DDNS(以cloudflare为例)
connora的专栏
06-20 5603
原版梅林固件即Asuswrt-Merlin 自384.7开始,引入了 In-a-dyn 组件以补充web界面不支持的ddns服务,下面将介绍配置步骤,直接看链接内原版步骤也可以。1. 登录cloudflare后台,某个域名-概述页-获取您的API令牌,新建子域名解析ip随便填。6. 路由器后台,外部网络-ddns-服务器 custom,主机填写,应用生效。2. 路由器插入优盘,后台-系统管理-jffs:重启格式化 否,启用脚本 是。4. ssh登录路由器 cd到jffs文件夹下。In-a-dyn配置示例。
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

whgjjim

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值