So everyone is talking about cloudflare tunnels and I decided to give it a shot.

However, I find the learning curve quite hard and would really appreciate a short introduction into how they work and how do I set them up…

In my current infrastructure I am running a reverse proxy with SSL and Authentik, but nothing is exposed outside. I access my network via a VPN but would like to try out and consider CF. Might be easier for the family.

How does authentication work? Is it really a secure way to expose internal services?

Thanks!

    • Meow.tar.gz@lemmy.goblackcat.com
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Sure! Let me know how it goes. If you need to do something more complex for internal DNS records for more than just A records, then look at the unbound.conf man page for stub zones. If you need something even more flexible than stub zones, you can use Unbound as a full authoritative DNS server with auth-zones. As far as I know auth-zones can even do zone transfers AXFR style which is cool!

      • operator@kbin.socialOP
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        That’s becoming interesting once I’m setting up a slaves for failover & local proximity ^^ looking forward to deep diving into it