theunraidhomeuser Posted August 3, 2023 Posted August 3, 2023 Hi there, those of you that know what I'm talking about in the subject, i.e. zero trust tunnel via cloudflare, woudl you reckon it's a safe way to access unraid in lieu of a VPN? I have unraid.mydomain.com routed to my unraid machine via cloudflare zero trust (using the cloudflaredtunnel docker plugin). Appreciate your thoughts, ideally, I'd like to put a .htaccess and .htpasswd before the unraid login screen for another layer of protection, but I can't seem to figure that out.... Cheers! Quote
ConnerVT Posted August 3, 2023 Posted August 3, 2023 Cloudflare Tunnels are encrypted, just like VPN tunnels, except are only encrypted between the Cloudflare servers and your endpoint server. With CF Tunnel, the data between your client device and Cloudlare server is not encrypted (other than typical https SSL). I use Cloudflared for accessing a number of docker services and some other devices on my network, but haven't yet reached the confidence level of exposing the Unraid server interface itself. For those services that I want an extra layer of security, I've been adding 2FA through Cloudflare's Zero Trust > Access > Applications. Quote
paperblankets Posted December 5, 2023 Posted December 5, 2023 To add to ConnerVTs post above, you can also configure an application on zero trust to only be accessible on your cloudflare gateway (vpn). https://community.cloudflare.com/t/bypass-login-page-when-warp-client-active/376061/11 I can't speak to the overall security or risk of misconfiguration in zerotrust, but that would give you fully 'tunneled' communication. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.