Cloudflare Tunnel: proxy-dns Command Removal 2026
mwpro.co.uk
Learn about the removal of the cloudflared proxy-dns command in Cloudflare Tunnel, effective February 2, 2026. Stay updated on migration steps and alternatives. Visit https:mwpro.co.uk for more details.

Hi everyone,

I have been using cloudflared for DNS-over-HTTPS for the past 5 years and it’s been working pretty well. One of the reasons for using it was because my ISP was hijacking my DNS queries and changing it to their own DNS server.

However, I saw this news where the proxy-dns feature in cloudflared is being closed and they are asking customers to shift to their WARP client instead.

I want to know what the community is using for encrypted DNS services (DoH, DoT, DoQ)

Thanks :)

  • SteveTech@aussie.zoneEnglish
    1·
    3 hours ago

    they are asking customers to shift to their WARP client instead.

    I just use WARP, and just send plain text DNS over it to 1.1.1.1. I believe this is superior to DoT or DoH, because the client don’t have to do any sort of handshake for each request and everything still goes over UDP while still being encrypted. If it’s setup correctly, one.one.one.one/help will say you’re using DNS over WARP.

    Actually I’ve got a weird setup where I’ve converted the WARP client to a wireguard profile and I run it on my router, but only route 1.1.1.2 and 1.0.0.2 through WARP. That way I can still traceroute 1.1.1.1 while debugging my network.