Cloudflared LXC, service 'tunnel run' not starting up upon restart/reboot #2442

New Issue

Closed

opened 2026-02-05 04:52:45 +03:00 by OVERLORD · 2 comments

OVERLORD commented 2026-02-05 04:52:45 +03:00

Owner

Copy Link

Originally created by @andilge on GitHub (Feb 3, 2026).

✅ Have you read and understood the above guidelines?

yes

🔎 Did you run the script with verbose mode enabled?

No (this issue will likely be closed automatically)

📜 What is the name of the script you are using?

id=cloudflared

📂 What was the exact command used to execute the script?

bash -c "$(curl -fsSL https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/ct/cloudflared.sh)"

⚙️ What settings are you using?

• Default Settings
• Advanced Settings

🖥️ Which Linux distribution are you using?

No response

📈 Which Proxmox version are you on?

pve 9.1.4

📝 Provide a clear and concise description of the issue.

installation with 'bash -c "$(curl -fsSL https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/ct/cloudflared.sh)"'.

I get it up and running with the command 'tunnel run [my_tunel_ID]'., all fine up to there. When I restart the container or reboot my pve node, the service won't kick in and start the tunnel.

The service appears being installed. Entering command 'cloudflared service install' informs this:
root@cloudflared:~# cloudflared service install
2026-02-03T13:01:28Z INF Using Systemd
2026-02-03T13:01:28Z ERR error generating service template error="cloudflared service is already installed at /etc/systemd/system/cloudflared.service; if you are running a cloudflared tunnel, you can point it to multiple origins, avoiding the need to run more than one cloudflared service in the same machine; otherwise if you are really sure, you can do cloudflared service uninstall to clean up the existing service and then try again this command"
cloudflared service is already installed at /etc/systemd/system/cloudflared.service; if you are running a cloudflared tunnel, you can point it to multiple origins, avoiding the need to run more than one cloudflared service in the same machine; otherwise if you are really sure, you can do cloudflared service uninstall to clean up the existing service and then try again this command

Here I do a 'systemctl status cloudflared' some sec after restarting the container. It shows all enabled and active:
● cloudflared.service - cloudflared DNS-over-HTTPS (DoH) proxy
Loaded: loaded (/etc/systemd/system/cloudflared.service; enabled; preset: enabled)
Active: active (running) since Tue 2026-02-03 13:57:03 CET; 48s ago
Invocation: c1e0d94ce8af4f18a48b7c1f23776486
Main PID: 85 (cloudflared)
Tasks: 5 (limit: 76797)
Memory: 50.3M (peak: 50.3M)
CPU: 147ms
CGroup: /system.slice/cloudflared.service
└─85 /usr/local/bin/cloudflared --config /usr/local/etc/cloudflared/config.yml

Feb 03 13:57:03 cloudflared systemd[1]: Started cloudflared.service - cloudflared DNS-over-HTTPS (DoH) proxy.
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Version 2026.1.2 (Checksum e157c54e929cc289cbd53860453168c2fe3439eb55e2e965a56579252585d9>
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF GOOS: linux, GOVersion: go1.24.11, GoArch: amd64
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Settings: map[config:/usr/local/etc/cloudflared/config.yml proxy-dns:true proxy-dns-addre>
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Adding DNS upstream url=https://1.1.1.1/dns-query
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Adding DNS upstream url=https://1.0.0.1/dns-query
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Starting DNS over HTTPS proxy server address=dns://0.0.0.0:53
Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF cloudflared will not automatically update if installed by a package manager.

The cannonical tunnel is not working though, my service remain unavailable on my sub domains. I can work around this by entering the command 'cloudflared tunnel run [my_tunnel_id]', but that's cumbersome. My goal here is restatring the container or rebooting the node will also restart the service and make my services available on my sub domains, eg. no manual interaction is needed.

Am I doing something wrong, only me having this problem?

🔄 Steps to reproduce the issue.

1. install cloudflared with the helper scrip
2. get your sub domains up and running with the CNAMEs
3. restart LXC cloudflred or reboot node
4. check, if your sub domains are still availble in the wide net.

❌ Paste the full error output (if available).

not avl

🖼️ Additional context (optional).

setup made following the tutorial on
https://bobcares.com/blog/cloudflare-tunnel-proxmox/

Originally created by @andilge on GitHub (Feb 3, 2026). ### ✅ Have you read and understood the above guidelines? yes ### 🔎 Did you run the script with verbose mode enabled? No (this issue will likely be closed automatically) ### 📜 What is the name of the script you are using? id=cloudflared ### 📂 What was the exact command used to execute the script? bash -c "$(curl -fsSL https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/ct/cloudflared.sh)" ### ⚙️ What settings are you using? - [x] Default Settings - [ ] Advanced Settings ### 🖥️ Which Linux distribution are you using? _No response_ ### 📈 Which Proxmox version are you on? pve 9.1.4 ### 📝 Provide a clear and concise description of the issue. installation with 'bash -c "$(curl -fsSL https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/ct/cloudflared.sh)"'. I get it up and running with the command 'tunnel run [my_tunel_ID]'., all fine up to there. When I restart the container or reboot my pve node, the service won't kick in and start the tunnel. The service appears being installed. Entering command 'cloudflared service install' informs this: root@cloudflared:~# cloudflared service install 2026-02-03T13:01:28Z INF Using Systemd 2026-02-03T13:01:28Z ERR error generating service template error="cloudflared service is already installed at /etc/systemd/system/cloudflared.service; if you are running a cloudflared tunnel, you can point it to multiple origins, avoiding the need to run more than one cloudflared service in the same machine; otherwise if you are really sure, you can do `cloudflared service uninstall` to clean up the existing service and then try again this command" cloudflared service is already installed at /etc/systemd/system/cloudflared.service; if you are running a cloudflared tunnel, you can point it to multiple origins, avoiding the need to run more than one cloudflared service in the same machine; otherwise if you are really sure, you can do `cloudflared service uninstall` to clean up the existing service and then try again this command Here I do a 'systemctl status cloudflared' some sec after restarting the container. It shows all enabled and active: ● cloudflared.service - cloudflared DNS-over-HTTPS (DoH) proxy Loaded: loaded (/etc/systemd/system/cloudflared.service; enabled; preset: enabled) Active: active (running) since Tue 2026-02-03 13:57:03 CET; 48s ago Invocation: c1e0d94ce8af4f18a48b7c1f23776486 Main PID: 85 (cloudflared) Tasks: 5 (limit: 76797) Memory: 50.3M (peak: 50.3M) CPU: 147ms CGroup: /system.slice/cloudflared.service └─85 /usr/local/bin/cloudflared --config /usr/local/etc/cloudflared/config.yml Feb 03 13:57:03 cloudflared systemd[1]: Started cloudflared.service - cloudflared DNS-over-HTTPS (DoH) proxy. Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Version 2026.1.2 (Checksum e157c54e929cc289cbd53860453168c2fe3439eb55e2e965a56579252585d9> Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF GOOS: linux, GOVersion: go1.24.11, GoArch: amd64 Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Settings: map[config:/usr/local/etc/cloudflared/config.yml proxy-dns:true proxy-dns-addre> Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Adding DNS upstream url=https://1.1.1.1/dns-query Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Adding DNS upstream url=https://1.0.0.1/dns-query Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF Starting DNS over HTTPS proxy server address=dns://0.0.0.0:53 Feb 03 13:57:04 cloudflared cloudflared[85]: 2026-02-03T12:57:04Z INF cloudflared will not automatically update if installed by a package manager. The cannonical tunnel is not working though, my service remain unavailable on my sub domains. I can work around this by entering the command 'cloudflared tunnel run [my_tunnel_id]', but that's cumbersome. My goal here is restatring the container or rebooting the node will also restart the service and make my services available on my sub domains, eg. no manual interaction is needed. Am I doing something wrong, only me having this problem? ### 🔄 Steps to reproduce the issue. 1. install cloudflared with the helper scrip 2. get your sub domains up and running with the CNAMEs 3. restart LXC cloudflred or reboot node 4. check, if your sub domains are still availble in the wide net. ### ❌ Paste the full error output (if available). not avl ### 🖼️ Additional context (optional). setup made following the tutorial on https://bobcares.com/blog/cloudflare-tunnel-proxmox/

OVERLORD added the bug label 2026-02-05 04:52:45 +03:00

OVERLORD closed this issue 2026-02-05 04:52:45 +03:00

OVERLORD commented 2026-02-05 04:52:57 +03:00

Author

Owner

Copy Link

@MickLesk commented on GitHub (Feb 3, 2026):

This is expected behavior, not a bug.

The helper script only installs the cloudflared package. The default systemd service provided by Cloudflare does not start a tunnel, it just starts cloudflared in its default mode.
A Cloudflare Tunnel only runs if it is explicitly configured (via config.yml) or started with cloudflared tunnel run <TUNNEL_id>.

To have the tunnel start automatically after reboot, you need to configure a tunnel and run it via a dedicated systemd service or a proper config.yml. The installer intentionally does not create or manage tunnels, as this requires user-specific Cloudflare credentials and domain setup.

@MickLesk commented on GitHub (Feb 3, 2026): This is expected behavior, not a bug. The helper script only installs the cloudflared package. The default systemd service provided by Cloudflare does not start a tunnel, it just starts cloudflared in its default mode. A Cloudflare Tunnel only runs if it is explicitly configured (via config.yml) or started with cloudflared tunnel run <TUNNEL_id>. To have the tunnel start automatically after reboot, you need to configure a tunnel and run it via a dedicated systemd service or a proper config.yml. The installer intentionally does not create or manage tunnels, as this requires user-specific Cloudflare credentials and domain setup.

OVERLORD commented 2026-02-05 04:53:01 +03:00

Author

Owner

Copy Link

@andilge commented on GitHub (Feb 3, 2026):

1000 thanks for this swift reply.
As you see above, I try to install the systemd service in the LXC and it says 'already installed'. so it appeared to be a part of the helper script.

I'll track this down and go for the proper config.yml to get it up and running as needed, tnx for the hint in this direction. Closing this tkt here.

@andilge commented on GitHub (Feb 3, 2026): 1000 thanks for this swift reply. As you see above, I try to install the systemd service in the LXC and it says 'already installed'. so it appeared to be a part of the helper script. I'll track this down and go for the proper config.yml to get it up and running as needed, tnx for the hint in this direction. Closing this tkt here.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

github-action-update-changelog

pr-update-app-files

docker_deb13

feat/cloudinit-sshkeys

feat/sqlserver2025

automated/update-github-versions

add-script-opencloud-1770212555

add-script-openclaw-1770212634

github-action-archive-changelog

update_apps_tool

add-script-wishlist-1770193085

MickLesk-patch-2

add-script-writefreely-1770188758

add-script-wealthfolio-1770143943

fix/vaultwarden-update-script

remove_memos

disable_npm

feature/codeberg-functions-forgejo-readeck

add-script-rustypaste-1770019426

add-script-kitchenowl-1770017260

fix/2fauth-php-version

tools_func_addcodeberg

CrazyWolf13-patch-2

add-script-shelfmark-1769790178

CrazyWolf13-patch-1

add-script-ampache-1769790139

add-script-languagetool-1769790155

remove_php_deps

ref_koilection

fix/php-module-improvements

tremor021-patch-1

fix/open-archiver-meilisearch-migration

cloudflare_dns

MickLesk-patch-1

michelroegl-brunner-patch-2

fix/version-display

fix/debian13-root-ownership

feat/interactive_prompts

feature/smart-error-recovery

core_stable

update_docs

refactor/tools-func-stability

certbot_npm

2026-02-03

2026-02-02

2026-02-01

2026-01-31

2026-01-30

2026-01-29

2026-01-28

2026-01-27

2026-01-26

2026-01-25

2026-01-24

2026-01-23

2026-01-22

2026-01-21

2026-01-20

2026-01-19

2026-01-18

2026-01-17

2026-01-16

2026-01-15

2026-01-14

2026-01-13

2026-01-12

2026-01-11

2026-01-10

2026-01-09

2026-01-08

2026-01-07

2026-01-06

2026-01-05

2026-01-04

2026-01-03

2026-01-02

2026-01-01

2025-12-31

2025-12-30

2025-12-29

2025-12-28

2025-12-27

2025-12-26

2025-12-25

2025-12-24

2025-12-23

2025-12-22

2025-12-21

2025-12-20

2025-12-19

2025-12-18

2025-12-17

2025-12-16

2025-12-15

2025-12-14

2025-12-13

2025-12-12

2025-12-11

2025-12-10

2025-12-09

2025-12-08

2025-12-07

2025-12-06

2025-12-05

2025-12-04

2025-12-03

2025-12-02

2025-12-01

2025-11-30

2025-11-29

2025-11-28

2025-11-27

2025-11-26

2025-11-25

2025-11-24

2025-11-23

2025-11-22

2025-11-21

2025-11-20

2025-11-19

2025-11-18

2025-11-17

2025-11-16

2025-11-15

2025-11-14

2025-11-13

2025-11-12

2025-11-11

2025-11-10

2025-11-09

2025-11-08

2025-11-07

2025-11-06

2025-11-05

2025-11-04

2025-11-03

2025-11-02

2025-11-01

2025-10-31

2025-10-30

2025-10-29

2025-10-28

2025-10-27

2025-10-26

2025-10-25

2025-10-24

2025-10-23

2025-10-22

2025-10-21

2025-10-20

2025-10-19

2025-10-18

2025-10-17

2025-10-16

2025-10-15

2025-10-14

2025-10-13

2025-10-12

2025-10-11

2025-10-10

2025-10-09

2025-10-08

2025-10-07

2025-10-06

2025-10-05

2025-10-04

2025-10-03

2025-10-02

2025-10-01

2025-09-30

2025-09-29

2025-09-28

2025-09-27

2025-09-26

2025-09-25

2025-09-24

2025-09-23

2025-09-22

2025-09-21

2025-09-20

2025-09-19

2025-09-18

2025-09-17

2025-09-16

2025-09-15

2025-09-14

2025-09-13

2025-09-12

2025-09-11

2025-09-10

2025-09-09

2025-09-08

2025-09-07

2025-09-06

2025-09-05

2025-09-04

2025-09-03

2025-09-02

2025-09-01

2025-08-31

2025-08-30

2025-08-29

2025-08-28

2025-08-27

2025-08-26

2025-08-25

2025-08-24

2025-08-23

2025-08-22

2025-08-21

2025-08-20

2025-08-19

2025-08-18

2025-08-17

2025-08-16

2025-08-15

2025-08-14

2025-08-13

2025-08-12

2025-08-11

2025-08-10

2025-08-09

2025-08-08

2025-08-07

2025-08-06

2025-08-05

2025-08-04

2025-08-03

2025-08-02

2025-08-01

2025-07-31

2025-07-30

2025-07-29

2025-07-28

2025-07-27

2025-07-26

2025-07-25

2025-07-24

2025-07-23

2025-07-22

2025-07-21

2025-07-20

2025-07-19

2025-07-18

2025-07-17

2025-07-16

2025-07-15

2025-07-14

2025-07-11

2025-07-10

2025-07-09

2025-07-08

2025-07-07

2025-07-06

2025-07-05

2025-07-04

2025-07-03

2025-07-02

2025-07-01

2025-06-30

2025-06-29

2025-06-28

2025-06-27

2025-06-26

2025-06-25

2025-06-24

2025-06-23

2025-06-22

2025-06-21

2025-06-20

2025-06-19

2025-06-18

2025-06-17

2025-06-16

2025-06-15

2025-06-14

2025-06-13

2025-06-12

2025-06-11

2025-06-10

2025-06-09

2025-06-08

2025-06-07

2025-06-06

2025-06-05

2025-06-04

2025-06-03

2025-06-02

2025-06-01

2025-05-31

2025-05-30

2025-05-29

2025-05-28

2025-05-27

2025-05-26

2025-05-25

2025-05-24

2025-05-23

2025-05-22

2025-05-21

2025-05-20

2025-05-19

2025-05-18

2025-05-17

2025-05-16

2025-05-15

2025-05-14

2025-05-13

2025-05-12

2025-05-11

2025-05-10

2025-05-09

2025-05-08

2025-05-07

2025-05-06

2025-05-05

2025-05-04

2025-05-03

2025-05-02

2025-05-01

2025-04-30

2025-04-29

2025-04-28

2025-04-27

2025-04-26

2025-04-25

2025-04-24

2025-04-23

2025-04-22

2025-04-20

2025-04-21

2025-04-19

2025-04-18

2025-04-17

2025-04-15

2025-04-16

2025-04-14

2025-04-13

2025-04-12

2025-04-11

2025-04-10

2025-04-09

2025-04-08

2025-04-07

2025-04-06

2025-04-05

2025-04-04

2025-04-03

2025-04-02

2025-04-01

2025-03-31

2025-03-30

2025-03-29

2025-03-28

2025-03-27

2025-03-26

2025-03-25

2025-03-24

2025-03-23

2025-03-22

2025-03-21

2025-03-20

2025-03-19

2025-03-18

2025-03-17

2025-03-16

2025-03-15

2025-03-14

2025-03-13

2025-03-12

2025-03-11

2025-03-10

2025-03-09

2025-03-08

2025-03-07

2025-03-06

2025-03-05

2025-03-04

2025-03-03

2025-03-02

2025-03-01

2025-02-28

2025-02-27

2025-02-26

2025-02-25

2025-02-24

2025-02-23

2025-02-21

2025-02-20

2025-02-19

2025-02-18

2025-02-17

2025-02-16

2025-02-15

2025-02-14

2025-02-13

2025-02-12

2025-02-11

2025-02-10

2025-02-09

2025-02-08

2025-02-07

2025-02-06

2025-02-05

2025-02-04

2025-02-03

2025-02-02

2025-02-01

2025-01-31

2025-01-30

2025-01-29

2025-01-28

2025-01-27

2025-01-26

2025-01-24

2025-01-23

2025-01-22

2025-01-21

2025-01-20

2025-01-19

2025-01-18

2025-01-17

2025-01-16

2025-01-15

2025-01-14

2025-01-13

2025-01-11

2025-01-10

2025-01-09

2025-01-08

2025-01-07

2025-01-06

2025-01-05

2025-01-04

2025-01-03

2025-01-02

2025-01-01

2024-12-31

2024-12-30

2024-12-29

2024-12-28

2024-12-27

2024-12-26

2024-12-25

2024-12-23

2024-12-21

2024-12-20

2024-12-19

2024-12-18

2024-12-17

2024-12-16

2024-12-13

2024-12-12

2024-12-09

2024-12-08

2024-12-07

2024-12-06

2024-12-05

2024-12-04

2024-12-03

2024-12-02

2024-11-30

2024-11-29

2024-11-28

2024-11-27

2024-11-26

2024-11-25

2024-11-24

2024-11-23

Labels

Clear labels

Implemented in VED waiting push to Main

breaking change

bug

bug

bugfix

deferred

delete script

dependencies

enhancement

external

feature

github

help wanted

in project pipeline

invalid

investigation

json

maintenance

needs triage

new script

new script

nice to have

not a script issue

not planned

organization

pull-request

Mirrored from GitHub Pull Request

question

refactor

rename script

security

update script

website

wontdo

🛑 Failure to comply with the guidelines

No Label bug

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/ProxmoxVE#2442