scripts/apply-cloudflare-dns-proxmox.sh

#!/usr/bin/env bash
# Apply Cloudflare DNS (1.1.1.1, 1.0.0.1) to all Proxmox hosts and LXC containers.
# Run from project root. Re-run when adding new containers.

set -euo pipefail

SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
PROJECT_ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
cd "$PROJECT_ROOT"

# Source IP config if available
[ -f config/ip-addresses.conf ] && source config/ip-addresses.conf 2>/dev/null || true

HOSTS="${PROXMOX_HOST_R630_01:-192.168.11.11} ${PROXMOX_HOST_R630_02:-192.168.11.12} ${PROXMOX_HOST_ML110:-192.168.11.10}"
DNS="1.1.1.1 1.0.0.1"

GREEN='\033[0;32m'
BLUE='\033[0;34m'
NC='\033[0m'
log_ok() { echo -e "${GREEN}[OK]${NC} $1"; }
log_info() { echo -e "${BLUE}[INFO]${NC} $1"; }

echo ""
echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"
echo "  Apply Cloudflare DNS to Proxmox (1.1.1.1, 1.0.0.1)"
echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"
echo ""

for host in $HOSTS; do
  log_info "Host $host"
  if ! ssh -o ConnectTimeout=5 -o BatchMode=yes root@$host "exit" 2>/dev/null; then
    log_info "  Skipped (not reachable)"
    continue
  fi
  # Host resolv.conf
  ssh root@$host "cp /etc/resolv.conf /etc/resolv.conf.bak.cloudflare 2>/dev/null; echo -e 'search lan\nnameserver 1.1.1.1\nnameserver 1.0.0.1' > /etc/resolv.conf" 2>/dev/null && log_ok "  Host resolv.conf" || true
  # Containers
  for vmid in $(ssh root@$host "pct list 2>/dev/null | awk 'NR>1 {print \$1}'"); do
    ssh root@$host "pct set $vmid --nameserver '1.1.1.1 1.0.0.1'" 2>/dev/null && log_ok "  VMID $vmid" || true
  done
  echo ""
done

log_ok "Done. UDM Pro: configure manually per docs/04-configuration/UDM_PRO_CLOUDFLARE_DNS_SETUP.md"
echo ""
docs: Ledger Live integration, contract deploy learnings, NEXT_STEPS updates - ADD_CHAIN138_TO_LEDGER_LIVE: Ledger form done; public code review repo bis-innovations/LedgerLive; init/push commands - CONTRACT_DEPLOYMENT_RUNBOOK: Chain 138 gas price 1 gwei, 36-addr check, TransactionMirror workaround - CONTRACT_*: AddressMapper, MirrorManager deployed 2026-02-12; 36-address on-chain check - NEXT_STEPS_FOR_YOU: Ledger done; steps completable now (no LAN); run-completable-tasks-from-anywhere - MASTER_INDEX, OPERATOR_OPTIONAL, SMART_CONTRACTS_INVENTORY_SIMPLE: updates - LEDGER_BLOCKCHAIN_INTEGRATION_COMPLETE: bis-innovations/LedgerLive reference Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-12 15:46:57 -08:00			`#!/usr/bin/env bash`
			`# Apply Cloudflare DNS (1.1.1.1, 1.0.0.1) to all Proxmox hosts and LXC containers.`
			`# Run from project root. Re-run when adding new containers.`

			`set -euo pipefail`

			`SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"`
			`PROJECT_ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"`
			`cd "$PROJECT_ROOT"`

			`# Source IP config if available`
			`[ -f config/ip-addresses.conf ] && source config/ip-addresses.conf 2>/dev/null \|\| true`

			`HOSTS="${PROXMOX_HOST_R630_01:-192.168.11.11} ${PROXMOX_HOST_R630_02:-192.168.11.12} ${PROXMOX_HOST_ML110:-192.168.11.10}"`
			`DNS="1.1.1.1 1.0.0.1"`

			`GREEN='\033[0;32m'`
			`BLUE='\033[0;34m'`
			`NC='\033[0m'`
			`log_ok() { echo -e "${GREEN}[OK]${NC} $1"; }`
			`log_info() { echo -e "${BLUE}[INFO]${NC} $1"; }`

			`echo ""`
			`echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"`
			`echo " Apply Cloudflare DNS to Proxmox (1.1.1.1, 1.0.0.1)"`
			`echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"`
			`echo ""`

			`for host in $HOSTS; do`
			`log_info "Host $host"`
			`if ! ssh -o ConnectTimeout=5 -o BatchMode=yes root@$host "exit" 2>/dev/null; then`
			`log_info " Skipped (not reachable)"`
			`continue`
			`fi`
			`# Host resolv.conf`
			`ssh root@$host "cp /etc/resolv.conf /etc/resolv.conf.bak.cloudflare 2>/dev/null; echo -e 'search lan\nnameserver 1.1.1.1\nnameserver 1.0.0.1' > /etc/resolv.conf" 2>/dev/null && log_ok " Host resolv.conf" \|\| true`
			`# Containers`
			`for vmid in $(ssh root@$host "pct list 2>/dev/null \| awk 'NR>1 {print \$1}'"); do`
			`ssh root@$host "pct set $vmid --nameserver '1.1.1.1 1.0.0.1'" 2>/dev/null && log_ok " VMID $vmid" \|\| true`
			`done`
			`echo ""`
			`done`

			`log_ok "Done. UDM Pro: configure manually per docs/04-configuration/UDM_PRO_CLOUDFLARE_DNS_SETUP.md"`
			`echo ""`