1

I have a raspi machine behind NAT in my room, and I want to access it from the interenet using the URL.I found this article. https://developers.cloudflare.com/cloudflare-one/tutorials/ssh However, it required me to run the cloudflared program on the connecting client. I understand that this is for the security purpose. Does it possible to make the connect without running the cloudflared program on the client machine.

A follow-up question would be is it possible to ssh into ipv6 machine that using the same technique.

funnygiraffe
  • 13
  • 2
  • 5

1 Answers1

0

There are various options when it comes to connecting to a machine running on a private network:

  1. Running cloudflared on the client (which you already found)
  2. Installing the WARP client on the user side, then using cloudflared on the server side to expose the service securely. Finally, route the network traffic for the private network on the tunnel via WARP. This approach is described in a tutorial here
  3. Cloudflare started also supporting in browser rendering of an SSH session. I have wrote a tutorial describing how to set it up here.

Approach (3) would do away with the need of running a client since it relies on a simple browser.

Paolo Tagliaferri
  • 981
  • 7
  • 11
  • 1
    Is it possible to use method 2.) and make the endpoint publicly available and rely on the ssh key to do the authentication instead. – funnygiraffe Feb 24 '22 at 20:47
  • @funnygiraffe have you found any way to connect via ssh without cloudflared installed on client? – kirtan403 Jun 14 '22 at 02:36
  • Also interested in any answer to this. My specific use-case is that I want run Gitea on a self-hosted Kubernetes cluster, and make have repos clonable over SSH outside my private network. Asking clients to install and run `cloudflared` or the WARP client seems cumbersome. – scubbo Oct 11 '22 at 22:07
  • Method (3) only requires a browser on the client side. – Paolo Tagliaferri Oct 12 '22 at 08:07