What is the name of the domain?
.
What is the issue you’re encountering
I am trying to find a way to restrict which servers can connect to a Cloudflare Tunnel that I have created via the Cloudflare dashboard using cloudflared. Specifically, I want to ensure that only certain servers can act as connectors (cloudflared) for this tunnel and receive traffic, preventing unauthorized servers from connecting to the same tunnel.
What steps have you taken to resolve the issue?
I have reviewed the Cloudflare documentation regarding tunnel configuration and the use of cloudflared replicas, but I haven’t found a direct method to limit connections at the server level that act as connectors for the tunnel. I also considered using firewall rules, but these seem more focused on limiting which clients can make requests through the tunnel rather than limiting which servers can connect to it.
Look into this here:
7. Check the tunnel
Your tunnel configuration is complete! If you want to get information on the tunnel you just created, you can run:
Terminal window
cloudflared tunnel info <UUID or NAME>
You can now route traffic to your tunnel using Cloudflare DNS or determine who can reach your tunnel with Cloudflare Access.
To secure your origin, you must validate the application token issued by Cloudflare Access. Token validation ensures that any requests which bypass Cloudflare Access (for example, due to a network misconfiguration) are rejected.
One option is to configure the Cloudflare Tunnel daemon, cloudflared
, to validate the token on your behalf. This is done by enabling Protect with Access in your Cloudflare Tunnel settings. Alternatively, if you do not wish to perform automatic validation with Cloudflare Tunnel, you can instead manually configure your origin to check all requests for a valid token.