Web server application proxy for TLS/TCP termination

We are hosting a web app platform for a customer, and our security auditors have identified a risk that the internal application has direct access to internet through our internal firewall with no application/reverse proxy and a lack of application proxy for TLS/TCP termination and packet inspection. Is there a tool or configuration through Cloudflare that would address these concerns? Our auditors feel that the WAF is a different use case.

You can follow Protect your origin server · Cloudflare Fundamentals docs to lock down your origin server. Using items like restricting to only Cloudflare IP’s, using authenticated origin correctly mean that your service should only respond to any connections that are coming from Cloudflare.

1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.