Restrict exposed HTTP endpoint from non-team member using Cloudflare WARP

Hello!

Is there a way to keep my public domain private by accessing it through Cloudflare WARP?

This is my configuration:

tunnel: <UUID>
credentials-file: /root/.cloudflared/<UUID>.json

warp-routing:
  enabled: true

ingress:

 - hostname: subdomain.domain.com
   service: http://192.168.254.102:80
 - hostname: subdomain2.domain.com
   service: https://192.168.254.100:443
   originRequest:
     noTLSVerify: true
 - service: http_status:404

I want to access subdomain.domain.com through WARP. Without using WARP, it will display " This site can’t be reached." Is that possible?

Cloudflare Access is also good with One-time PIN, but it still indicates that the domain is reachable. Accessing the local IP address is good, but they have full access on my network. I don’t want that either.