Hello,
Are there any guides available that I can read that give a definitive outline/diagram of what a configuration of Proxmox should look like when using Cloudflared Tunnels + Public IP addresses?
From what I have read, this seems like it should be a simple, straightforward approach to hosting publicly; because I don't have to worry about port forwarding (increasing likelihood of connectivity and security issues). Theoretically, I could keep all ports closed, and tunnel into my nodes, and this would solve the problem of SSL.
This is what I was given by my ISP:
I don't know where to plugin Cloudflare Tunnels, only one tunnel at the edge? One in every node? One in every container?
Are there any guides available that I can read that give a definitive outline/diagram of what a configuration of Proxmox should look like when using Cloudflared Tunnels + Public IP addresses?
From what I have read, this seems like it should be a simple, straightforward approach to hosting publicly; because I don't have to worry about port forwarding (increasing likelihood of connectivity and security issues). Theoretically, I could keep all ports closed, and tunnel into my nodes, and this would solve the problem of SSL.
This is what I was given by my ISP:
Static Subnet Mask 255.255.255.248Static Gateway IP = xx.xx130.206Static IP # 1 = xx.xx.130.201Static IP # 2 = xx.xx.130.202Static IP # 3 = xx.xx.130.203Static IP # 4 = xx.xx.130.204Static IP # 5 = xx.xx.130.205Static Primary DNS = xx.xx.156.1Static Secondary DNS = xx.xx.157.1
I don't know where to plugin Cloudflare Tunnels, only one tunnel at the edge? One in every node? One in every container?
OPNsense Firewall (PowerEdge R730) (Will also have Tailscale, Nebula, or Netbird on this device for my overseas employees to tunnel in locally) | (Where do I assign the Static Gateway IP that I was given if OPNSense is intended to have 192.168.1.1)? | |-- Server 1 (PowerEdge R740) | |--Traefik Reverse Proxy/Web Server | | |-- Container 1 (Web App) | | |-- Container 2 (Web App) | | |-- Container 3 (Web App) | | |-- Container 4 (Web App) | |-- Server 2 (PowerEdge R740) | |--Traefik Reverse Proxy/Web Server | | |-- Container 5 (Web App) | | |-- Container 6 (Web App) | | |-- Container 7 (Web App) | | |-- Container 8 (Web App) | |-- Server 3 (PowerEdge R740) | |-- Traefik Reverse Proxy/Web Server | | |-- Container 9 (Web App) | | |-- Container 10 (Web App) | | |-- Container 11 (Web App) | | |-- Container 12 (Web App) | |-- Server 4 (PowerEdge R740) |-- Traefik Reverse Proxy/Web Server |-- Container 13 (Web App) |-- Container 14 (Web App) |-- Container 15 (Web App) |-- Container 16 (Web App)