To access a private web service, a subdomain can be created for it and an existing endpoint with port in the local network can be specified. For a first test I have published Home-Assistant: Private Network Routes For simplicity, I implemented the tunnel standalone using the docker-compose file described. It would also be possible for each project, for each docker-compose file to use its own network and tunnel. The command "docker-compose up -d" starts the Tunnel in this case. If you want to add the command to an existing project in a docker-compose file, you can do so as follows: Alternatively to docker run: docker-compose.yml version: '3' Since I run my web services with Docker, I use the Docker variant for the connector here as well:īy running the "docker run" command, the tunnel starts and establishes a connection: Docker tunnel docker run In order to establish a connection between the network at home and Cloudflare, we need a little helper on the local network. The wizard for creating a tunnel starts with "Create a tunnel". web space or a dedicated web server? CloudFlare - Zero Trust TunnelĪfter a domain has been included in CloudFlare, the only thing left to do is to set up the tunnel: Those who do not yet own a domain can register it with any hosting provider or directly with Cloudflare:Įxisting domains, or domains registered with another hosting provider, can be included in Cloudflare by customizing the DNS servers, see: Website builder vs. See also: https web services as VPN alternative: accessing the network. web space or your own web server? Cloudflareįirst of all, an overview of calling via the Internet when using a Cloudflare tunnel: Information on registering and managing a domain, see also: Website construction kit vs. ⚠ As of May 2023, free domains can also no longer be registered with : Although there have been free domains in the past, as an example via the provider, it is more sustainable to invest a few euros / year and register your own domain. Paid Top Level Domain (TLD), available around 15€ per year, depending on the domain extension.Ī TLD domain is required to access your own resources via the Zero Trust Tunnel, a DynDNS service is not sufficient for this.CloudFlare account (a credit card is required for registration, the Zero Trust Tunnel service is free for a limited number of users).The only requirement is a domain and a CloudFlare account. After the tunnel is established outbound, the Internet access does not require any special prerequisites: no fixed IP address, no DynDNS service and no incoming ports and therefore no port forwarding on the router. The tunnel is established with a small utility program from the own network, which enables a simple and secure connection from the outside to released services. As an alternative to this setup, Cloudflare offers a possibility to establish the connection via a tunnel with its Zero Trust service. For secure access to multiple web services, a reverse proxy with SSL offloading can also be used. If you want to access your web services from the Internet, you can set up port forwarding on the router.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |