Using Cloudfare Tunnels For Hosting & Certificates Without Exposing Ports On Your Firewall [YouTube Release]

Additional Resources:

Cloudflare Tunnel Docs

pfsense HAProxy video

Jeff’s How I survived a DDoS attack
How I survived a DDoS attack - YouTube
Connecting With Us

Lawrence Systems Shirts and Swag



Amazon Affiliate Store
:shopping_cart: Lawrence Systems's Amazon Page

Ubiquiti Affiliate
:shopping_cart: Ubiquiti Store USA – Ubiquiti Inc.

All Of Our Affiliates that help us out and can get you discounts!
:shopping_cart: Affiliates We Love - Lawrence Technology Services

Gear we use on Kit
:shopping_cart: Kit

Try ITProTV free of charge and get 30% off!
:shopping_cart: Learn technology and pass IT certifications with ITProTV

Use OfferCode LTSERVICES to get 10% off your order at
:shopping_cart: Tech Supply Direct | Shop Workstations, Servers, Storage, and More

Digital Ocean Offer Code
:shopping_cart: DigitalOcean | The Cloud for Builders

HostiFi UniFi Cloud Hosting Service
:shopping_cart: HostiFi - UniFi Cloud Hosting

Protect you privacy with a VPN from Private Internet Access
:shopping_cart: Buy VPN with Credit Card or PayPal | Private Internet Access

:moneybag: lawrencesystems | creating Tech Tutorials & Reviews | Patreon

:stopwatch: Time Stamps :stopwatch:

00:00 :arrow_forward: Cloudflare Tunnels
00:30 :arrow_forward: Requirements
01:42 :arrow_forward: Security Considerations
04:06 :arrow_forward: Demo Lab Setup
06:43 :arrow_forward: Documentation & Dashboard Setup
07:42 :arrow_forward: Creating Tunnels
14:41 :arrow_forward: Adding Application Security

#homelab #cloudflare #firewall

Is there any data limitation going thru cloudflare ? Can I stream plex movies over cloudflare ?

1 Like

I don’t see any limits in their documentation Account limits · Cloudflare Zero Trust docs

Really found this video informative! I’m also curious if this could be used to allow a locally hosted Unifi controller with multiple remote sites to be hosted without requiring port forwarding. I think the answer is no but I’m curious what your take is on this. It would mitigate the risk of having to have port 8443 forwarded I think but what about 8080 and the like?

I am not sure that it would work properly for the other ports, but it should work for the web interface at 8443.