DockFlare (CF Zero Trust)

Refer to the following documentation for creation and management of Cloudflare services

• Remote Access

• External Access to Systems

• Authentication, Access and Accounts

Zero Trust / Tunnels

Link to App

The Cloudflare tunnel is a port-forwarding-less reverse proxy. The traffic is tunneled through Cloudflare servers reducing the risk of DDOS and other malicious attacks. Another advantage is that Cloudflare handles authentication, so its harder to brute force one of our internal services.

Flowchart

DockFlare

Tunnels are slowly being migrated to DockFlare

Link to GitHub or Website

DockFlare simplifies Cloudflare Tunnel and Zero Trust Access policy management by using Docker labels for automated configuration, while also providing a powerful web UI for manual service definitions and policy overrides. It enables secure, hassle-free public access to both Dockerized and non-Dockerized applications with minimal direct interaction with Cloudflare. Acting as a dynamic, self-hosted ingress controller, DockFlare offers persistent, UI-driven control over access policies centralizing and streamlining your access management.

This app is part of the All Compose Stacks and is hosted on each machine / VM.

Each docker container can be accessed via the tunnel by following DockFlare

The DockFlare UI can be accessed at the relevant host, eg https://espresso-tunnel.xfgn.dev and https://cocoa-tunnel.xfgn.dev