So everyone is talking about cloudflare tunnels and I decided to give it a shot.

However, I find the learning curve quite hard and would really appreciate a short introduction into how they work and how do I set them up…

In my current infrastructure I am running a reverse proxy with SSL and Authentik, but nothing is exposed outside. I access my network via a VPN but would like to try out and consider CF. Might be easier for the family.

How does authentication work? Is it really a secure way to expose internal services?

Thanks!

  • thatguy@lemmy.itsallbadsyntax.com
    link
    fedilink
    arrow-up
    3
    ·
    1 year ago

    I use a VPS, not Cloudflair, but it’s the exact same concept.

    CF will have an exposed IP that you point your domains A record to. On your CF instance, you would then tunnel (I’m guessing they offer wireguard) into your home network, just like you are currently doing from your personal device.

    A big difference here is you will put a reverse proxy on CF that will authenticate SSL with users. The proxy then will pass unencrypted http down the tunnel for your web services to respond to.

    A couple days ago, someone asked (I think on this instance), “can you protect yourself from your VPS?”, which I think would be your next question.

    <Opinion>I pay for a VPS, because if it’s free, you or your data is some how the product. </Opinion>