Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

Cloudflare Tunnel?

Scheduled Pinned Locked Moved Solved Support
cloudflare
18 Posts 6 Posters 835 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • jagadeesh-s2104J Offline
    jagadeesh-s2104J Offline
    jagadeesh-s2104
    wrote on last edited by girish
    #1

    Hello guys!

    Is there a way to use cloudflare tunnel/argo with cloudron instead of opening the ports?

    Regards,
    KK

    girishG 1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    replied to jagadeesh-s2104 on last edited by
    #2

    @jagadeesh-s2104 a user had some success with argo tunnel as reported here - https://forum.cloudron.io/topic/5714/argo-tunnels . We haven't tried this ourselves.

    jagadeesh-s2104J 1 Reply Last reply
    1
  • jagadeesh-s2104J Offline
    jagadeesh-s2104J Offline
    jagadeesh-s2104
    replied to girish on last edited by
    #3

    @girish thank you!

    1 Reply Last reply
    0
  • bigbucketboyB Offline
    bigbucketboyB Offline
    bigbucketboy
    wrote on last edited by bigbucketboy
    #4

    Hello. I was able to get this to work successfully with Cloudflare Tunnels. What I am having a problem with now is that my local Cloudron server is throwing fits when I go and re-sync DNS records. To get Cloudflare Tunnels to work you have to delete the current *.domain.com DNS record in Cloudflare that your Cloudron server automatically creates. Then in the Cloudflare Tunnels settings it creates a CNAME record in place of the old DNS A record that Cloudron automatically created. You do have to check the settings under TLS and disable TLS verify though. At this point it does work. I can access my site and completely disable port 443 on my router. I have zero ports exposed. Essentially Cloudflare Tunnels acts as a Reverse Proxy through the tunnel. I can route all the apps with their sub-domains this way and it works great. My question is, now that you have a little bit of backstory, how can I make Cloudron and the DNS settings Cloudflare Tunnels create work naturally together so that if DNS records re-sync it keeps everything working properly without breaking the site. To my understanding Cloudron does regular DNS checks and makes sure everything can talk to each other. If I do re-sync DNS settings or if the Cloudron server does it automatically itself via it's regular checks the DNS records get overwritten to point back to my public IP address again, instead of the Cloudflare Tunnel, which then breaks the site because the port fordwarding is turned off.

    Thanks @girish

    1 Reply Last reply
    1
  • girishG girish marked this topic as a question on
  • girishG girish has marked this topic as solved on
  • bigbucketboyB Offline
    bigbucketboyB Offline
    bigbucketboy
    wrote on last edited by
    #5

    @girish So I saw in a previous post you said you can setup Cloudron to use a local IP rather than a public one which I decided to go that route everything still works fine but I had one more question. Will Cloudron update DNS records automatically? Like will my system break after updates or something? Will I also receive an alert from my main my.domain.com notifications saying DNS don’t match? I’m hoping with it set to local it won’t update. If it does I can just VPN into my network and access stuff and fix everything again but I was hoping I wouldn’t have to do this often if at all. Can you shed a little light on this? Thanks!

    girishG 1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    replied to bigbucketboy on last edited by
    #6

    @bigbucketboy the update by itself won't re-setup DNS records, no.

    bigbucketboyB 1 Reply Last reply
    0
  • bigbucketboyB Offline
    bigbucketboyB Offline
    bigbucketboy
    replied to girish on last edited by
    #7

    @girish great thanks!

    1 Reply Last reply
    0
  • nebulonN nebulon referenced this topic on
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #8

    quite unfortunately, i had some isssues with it.
    basically what i did is the easiest way, putting the cloudflare tunnel in a docker container.
    then, i made it go to my page, of testing, https://wp-test.blindsoft.net.
    quite unfortunately, it showed up as bad gateway (502) error. its closed now, so.
    what i usually do for things i cant put under cloudflare gateway is i filter the ports to all IPs ports with the exception of cloudflare IP addresses, port443, and my IP, 22 and 443. though keep in mind that if applications are using openid, for whatever reason this may not work.

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #9

    *things i cant put under cloudflare tunnels, my bad

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #10

    an example of this not working is https://access.blindsoft.net

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #11

    o nevermind, it might be working this time. my bad there

    M 1 Reply Last reply
    0
  • M Offline
    M Offline
    msbt App Dev
    replied to adison last edited by
    #12

    @adison just an fyi: you can edit your posts

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #13

    @msbt

    sorry, i'm a blind person and my screen reader does not tell me this stuf

    M 1 Reply Last reply
    1
  • M Offline
    M Offline
    msbt App Dev
    replied to adison last edited by
    #14

    @adison good point, sorry for that 🙂

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #15

    it's fine, a lot of people get that confused

    1 Reply Last reply
    0
  • robiR Offline
    robiR Offline
    robi
    wrote last edited by
    #16

    FYI, it's also an unlabeled aspect of the UI that's in a 3-dot menu after the reply, quote and upvote button at the bottom of each post.

    Life of sky tech

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote last edited by
    #17

    its inlabled? it needs to be labled if my screen reader needs to read it

    robiR 1 Reply Last reply
    0
  • robiR Offline
    robiR Offline
    robi
    replied to adison last edited by
    #18

    @adison you can request the improvement in their github upstream

    Life of sky tech

    1 Reply Last reply
    0

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Login

  • Don't have an account? Register

  • Login or register to search.