I recently set up a tunnel connecting to my NAS using cloudflare.
I was able to connect to it remotely from work.
I at first I was excited that I got it working but then It terrified me that I was able to easily connect to it.
Is this safe? How likely is it for someone to find my tunnels?
How can I make this service more secure?
How did you connect? SSH? Are there other services you are accessing?
No, no, no!!!
- Public access to services like a website: Cloudflare Tunnel
- Restricted access to just a few users: Cloudflare Tunnel + Cloudflare Application
- Exclusive restricted access the infrastructure: Tailscale
I didn’t use tunnels for my homelab.
https://jmcglock.substack.com/p/securely-exposing-homelab-projects
So long as everyone in the room consents, I think you should be alright.
Historically, if kids are involved… That’s pretty bad.
If you’re planning to expose a server to a world wide audience Cloudflare is a great choice. However, if it’s just for you and maybe a few selected friends or family members, consider getting a free Zerotier or TailScale account. You’ll have complete control as to who has access.