I’m in the early stages of testing Cloudflare Zero Trust before I deploy it to my larger organization. For this test set up I have my Zero Trust account setup for one user who is authenticated via Google.
This network has the follow nodes:
Android Cell Phone
Ubuntu Server on Google Cloud
The Android Cell Phone and Chromebook have WARP Client version 6.16 for Android installed and are configured for my team account. The server has cloudflared installed with a private tunnel to the server IP address. The PC has the latest WARP Client installed.
For the test I am hosting a webpage on the Ubuntu Server and the firewall has been figured to block all external network access. Only it’s internal 10.128.0.2 address is configured for port 8080 access. Given that a tunnel has been created to that specific address the assumption is that all WARP Clients should be able to access 10.128.0.2:8080. However what I have found is that all clients with the exception of the Android Phone can access 10.128.0.2:8080. Given this I’m fairly certain the the split tunnel configuration is correct in the Zero Trust Center but I can explain why the Android Phone is unable to access the private IP address.
Anyone have any thoughts as to why this might be?