Is it possible to link two tunnels?

Zero Trust Cloudflare Tunnel
1

What is the name of the domain?

test.com

What is the issue you’re encountering

See below

What are the steps to reproduce the issue?

Hi there,

I have this scenario which I am pretty sure Cloudflare tunnels of some kind should be able to help with, but I am struggling conceptually in regards how to achieve it. This is my setup:

  1. Windows machine with the cloudflared.exe available. I am not admin so I can’t install anything else.
  2. Linux VM in the Cloud with various existing tunnels to Cloudflare that all work well.

Now I want to be able to run tools from my Linux VM and for them to enter the Windows machine but I don’t want to have to choose an IP and Port using Cloudflare tunnels every time a tool needs a specific one.

So a bit like a socks proxy or something where I can just run the tool it goes through the Linux VM tunnel and enters a potentially linked Cloudflared tunnel coming out from Windows? Or maybe the two tunnels can somehow share an IP range on Cloudflare or something to connect…

The last paragraph I am just guessing with and hoping the gurus on here can help with.
Anybody able to suggest a neat solution given the limitations of not being admin on Windows?

Thanks very much
David

2

Hi there,

The only way I can think that would allow you to connect tunnels would be by using Magic WAN

Bear in mind however that Magic WAN is an Enterprise only product.

The obvious alternative would be to use WARP on the client side.

Take care.

3

Thank you mcorreia. I appreciate the feedback to help understand the possibilities.

4

Hi there,

Just coming back on this as I’m trying the warp setup as suggested. Here is what I’ve done:

  1. Installed the warp-cli tool on Linux, registered it and it connected fine. Warp mode is now on after performing the test curl command although gateway is off but not sure if needed.
  2. On the dashboard I create a tunnel with a Windows private network specified to match my 192.168.* range
  3. On Windows I connect to this tunnel doing cloudflared tunnel run --token mytoken
  4. In the warp exclusion section I ensure my split tunnel has my home subnet 192.168.* exclusion deleted.

Now from Linux where warp-cli is I thought I could scan Windows shares but I can’t. Am I missing a step please?

I have left out the teams part of it for now to keep things simple.

Thanks
David

5

Figured it out, needed to use the teams feature