Unifi Cloudkey

Sorry if this is a newbie question. I’ve moved to Starlink at my office which is CGNAT. As per many recommendations I’ve setup a tunnel and can now successfully access a few devices remotely.

However I have a Unifi Cloudkey that several sites inform to with guest access portals and allowing me to manage the devices. I can’t work out if it’s possible to tunnel the multiple ports required to the one CNAME and therefore to the single internal IP address ? For example I need ports 3478, 443, 8080 and 8843.

If anyone could point me in the right direction, I would be very grateful.

hey :wave:
I am following your question here quite a lot of time, and I’m really interested on this setup.
however, it seems to me that I am missing some points on your questions.

A very simple answer here could be, what we call “TeamNet”:

https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/private-net/private-hostnames-ips/

But to be honest again, I cannot fully understand the design of what you need to do, so to be able to help here, we need to break this to small sections.

Let’s start with what you have done so far, and let’s identify the point where all breaks, and try to debug.


as per

I suppose that you have already installed cloudflared daemon, created your first tunnel


As per:

How Unify Key here really works?

Is that an internal DNS resolver?
If thats the case, you can use yr internal DNS resolver for this by following article:
https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/private-net/private-hostnames-ips

If we can break this in small steps with details, we may can help here.

Cloudkey is sort of like a KVM for network gear. It essentially runs this panel for your network:

I just had no idea it required that many inbound ports open to use.