Sftp with Short-Lived Certificates

ajdadja · August 5, 2021, 9:18pm

Is SFTP expexcted to work with Cloudflare’s Short-Lived Certificates? Cloudflare’s documentation doesn’t seem to mention sftp, but the ProxyCommand directives don’t look like they’d work with sftp, and on my machine, they indeed aren’t working.

ajdadja · August 9, 2021, 6:56pm

@MoreHelp please advise.

matteo · August 10, 2021, 7:26am

Cloudflare doesn’t proxy non-HTTP(S) content. You need to set the hostname as and use your own certificates.

ajdadja · August 10, 2021, 2:49pm

Cloudflare proxies port 22 SSH. I’m talking about SFTP using this mechanism.

sdayman · August 10, 2021, 2:51pm

That is not correct. (Unless you’re using Enterprise Spectrum)

https://support.cloudflare.com/hc/en-us/articles/200169156-Identifying-network-ports-compatible-with-Cloudflare-s-proxy

ajdadja · August 10, 2021, 3:09pm

Sorry, perhaps I’m using the wrong termniology. I’m talking about this. It works with all accounts including Free accounts:

ajdadja · August 10, 2021, 3:29pm

I think I confused everyone by listing ProxyPass when I meant ProxyCommand in my original post. Sorry about that. I’ve now fixed it.

system · August 13, 2021, 3:30pm

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Short-Lived Certificate in Browser SSH doesn't work at all Cloudflare Tunnel	10	1649	January 29, 2024
SSTP via Cloudflare SSL? Security	4	5204	December 22, 2021
Argo Tunnel Short lived cert "One" config for all Servers Cloudflare Tunnel	0	2180	January 29, 2020
Integrate short-lived SSH certificates with GitHub SSH CA Cloudflare Tunnel	0	827	June 22, 2023
SSL Server and Client Certificates from Cloudflare Security	7	2466	May 23, 2021

Sftp with Short-Lived Certificates

Related topics