curben
/
cloudflared-mirror
mirror of https://github.com/cloudflare/cloudflared.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,732 Commits 11 Branches 240 Tags 53 MiB
Go 92.5%
Python 6.2%
Cap'n Proto 0.5%
Makefile 0.5%
Shell 0.2%
Go to file
Devin Carr 02705c44b2 TUN-9322: Add metric for unsupported RPC commands for datagram v3 
Additionally adds support for the connection index as a label for the
datagram v3 specific tunnel metrics.

Closes TUN-9322
 		2025-05-13 16:11:09 +00:00
.github Update semgrep.yml 2024-09-24 21:40:50 -04:00
.mac_resources AUTH-2712 mac package build script and better config file handling when started as a service 2020-06-25 16:44:57 -05:00
.teamcity DEVTOOLS-16383: Create GitlabCI pipeline to release Mac builds 2025-04-30 09:57:52 +00:00
carrier TUN-7057: Remove dependency github.com/gorilla/mux 2022-12-24 21:05:51 -07:00
cfapi TUN-8281: Run cloudflared query list tunnels/routes endpoint in a paginated way 2024-03-19 16:35:40 +00:00
cfio TUN-6035: Reduce buffer size when proxying data 2022-04-11 14:41:33 +00:00
cmd/cloudflared TUN-9291: Remove dynamic reloading of features for datagram v3 2025-05-07 23:21:08 +00:00
component-tests TUN-8857: remove restriction for using FIPS and PQ 2025-01-30 05:47:07 -08:00
config TUN-8861: Add configuration for active sessions limiter 2025-01-20 11:39:42 +00:00
connection TUN-9322: Add metric for unsupported RPC commands for datagram v3 2025-05-13 16:11:09 +00:00
credentials chore: fix linter rules 2025-04-01 18:57:55 +01:00
datagramsession TUN-9322: Add metric for unsupported RPC commands for datagram v3 2025-05-13 16:11:09 +00:00
diagnostic TUN-8914: Create a flags module to group all cloudflared cli flags 2025-02-06 03:30:27 -08:00
edgediscovery chore: Remove h2mux code 2024-10-15 13:10:30 -07:00
features TUN-9291: Remove dynamic reloading of features for datagram v3 2025-05-07 23:21:08 +00:00
fips TUN-8855: Update PQ curve preferences 2025-01-30 05:02:47 -08:00
flow TUN-8861: Rename Session Limiter to Flow Limiter 2025-01-20 06:33:40 -08:00
hello TUN-7590: Remove usages of ioutil 2023-07-17 19:08:38 +00:00
ingress TUN-8861: Add configuration for active sessions limiter 2025-01-20 11:39:42 +00:00
internal/test TUN-7125: Add management streaming logs WebSocket protocol 2023-04-05 16:25:16 +00:00
ipaccess TUN-6016: Push local managed tunnels configuration to the edge 2022-05-06 15:43:24 +00:00
logger fix: Use path and filepath operation appropriately 2025-04-01 17:59:43 +01:00
management chore: fix linter rules 2025-04-01 18:57:55 +01:00
metrics TUN-8792: Make diag/system endpoint always return a JSON 2024-12-11 02:48:41 -08:00
mocks TUN-8861: Rename Session Limiter to Flow Limiter 2025-01-20 06:33:40 -08:00
orchestration TUN-8914: Create a flags module to group all cloudflared cli flags 2025-02-06 03:30:27 -08:00
overwatch AUTH-2169 make access login page more generic 2020-06-08 11:20:30 -05:00
packet TUN-8640: Refactor ICMPRouter to support new ICMPResponders 2024-11-27 12:46:08 -08:00
proxy TUN-8861: Rename Session Limiter to Flow Limiter 2025-01-20 06:33:40 -08:00
quic TUN-9322: Add metric for unsupported RPC commands for datagram v3 2025-05-13 16:11:09 +00:00
retry chore: fix linter rules 2025-04-01 18:57:55 +01:00
signal TUN-1562: Refactor connectedSignal to be safe to close multiple times 2019-03-05 15:51:35 -06:00
socks TUN-7590: Remove usages of ioutil 2023-07-17 19:08:38 +00:00
sshgen TUN-8333: Bump go-jose dependency to v4 2024-04-10 09:49:40 -07:00
stream TUN-7545: Add support for full bidirectionally streaming with close signal propagation 2023-07-06 11:54:26 +01:00
supervisor TUN-9007: modify logic to resolve region when the tunnel token has an endpoint field 2025-02-25 19:03:41 +00:00
tlsconfig TUN-7590: Remove usages of ioutil 2023-07-17 19:08:38 +00:00
token TUN-8960: Connect to FED API GW based on the OriginCert's endpoint 2025-02-25 17:13:33 +00:00
tracing add: new go-fuzz targets 2024-11-11 20:45:49 +05:30
tunneldns TUN-7590: Remove usages of ioutil 2023-07-17 19:08:38 +00:00
tunnelrpc TUN-8904: Rename Connect Response Flow Rate Limited metadata 2025-01-22 07:23:46 -08:00
tunnelstate TUN-8728: implement diag/tunnel endpoint 2024-11-25 10:43:32 -08:00
validation add: new go-fuzz targets 2024-11-11 20:45:49 +05:30
vendor Bump x/crypto to 0.31.0 2025-02-03 16:08:02 +01:00
watcher TUN-7584: Bump go 1.20.6 2023-07-26 13:52:40 -07:00
websocket TUN-7057: Remove dependency github.com/gorilla/mux 2022-12-24 21:05:51 -07:00
.docker-images TUN-6825: Fix cloudflared:version images require arch hyphens 2022-10-04 15:48:58 +00:00
.dockerignore TUN-5129: Use go 1.17 and copy .git folder to docker build to compute version 2021-09-21 15:50:35 +00:00
.gitignore TUN-8708: Bump python min version to 3.10 2024-10-31 13:33:24 -07:00
.gitlab-ci.yml chore: Do not use gitlab merge request pipelines 2025-04-30 12:01:43 +00:00
.golangci.yaml TUN-8866: Add linter to cloudflared repository 2025-01-16 07:02:54 -08:00
CHANGES.md Release 2025.1.1 2025-01-30 14:48:47 +00:00
Dockerfile TUN-9016: update base-debian to v12 2025-02-26 15:54:10 +00:00
Dockerfile.amd64 TUN-9016: update base-debian to v12 2025-02-26 15:54:10 +00:00
Dockerfile.arm64 TUN-9016: update base-debian to v12 2025-02-26 15:54:10 +00:00
LICENSE TUN-5851: Update all references to point to Apache License 2.0 2022-03-08 17:35:31 +00:00
Makefile DEVTOOLS-16383: Create GitlabCI pipeline to release Mac builds 2025-04-30 09:57:52 +00:00
README.md chore: Update tunnel configuration link in the readme 2025-04-01 17:53:29 +01:00
RELEASE_NOTES Release 2025.4.2 2025-04-30 14:15:20 +01:00
build-packages-fips.sh TUN-8858: update go to 1.22.10 and include quic-go FIPS changes 2025-01-30 03:11:54 -08:00
build-packages.sh TUN-8583: change final directory of artifacts 2024-08-05 10:49:20 +01:00
catalog-info.yaml SDLC-3727 - Adding FIPS status to backstage 2025-04-10 16:58:04 +00:00
cfsetup.yaml TUN-9089: Pin go import to v0.30.0, v0.31.0 requires go 1.23 2025-03-06 12:05:24 +00:00
check-fips.sh TUN-5551: Reintroduce FIPS compliance for linux amd64 now as separate binaries 2021-12-20 21:50:42 +00:00
cloudflared.wxs Remove extraneous `period` from Path Environment Variable (#1009) 2023-12-14 16:32:48 +00:00
cloudflared_man_template AUTH-2644: Change install location and add man page 2020-07-06 19:27:25 +00:00
dev.Dockerfile TUN-8858: update go to 1.22.10 and include quic-go FIPS changes 2025-01-30 03:11:54 -08:00
fmt-check.sh TUN-6917: Bump go to 1.19.3 2022-11-07 09:19:19 -08:00
github_message.py TUN-6823: Update github release message to pull from KV 2022-10-11 15:43:06 +00:00
github_release.py DEVTOOLS-16383: Create GitlabCI pipeline to release Mac builds 2025-04-30 09:57:52 +00:00
go.mod Bump x/crypto to 0.31.0 2025-02-03 16:08:02 +01:00
go.sum Bump x/crypto to 0.31.0 2025-02-03 16:08:02 +01:00
postinst.sh AUTH-2858: Set file to disable autoupdate 2020-07-10 18:03:07 +00:00
postrm.sh TUN-8290: Remove `|| true` from postrm.sh 2024-03-07 16:22:56 +00:00
release_pkgs.py TUN-8842: Add Ubuntu Noble and 'any' debian distributions to release script 2025-01-06 12:09:13 +00:00
wix.json AUTH-2712 mac package build script and better config file handling when started as a service 2020-06-25 16:44:57 -05:00

README.md

Cloudflare Tunnel client

Contains the command-line client for Cloudflare Tunnel, a tunneling daemon that proxies traffic from the Cloudflare network to your origins. This daemon sits between Cloudflare network and your origin (e.g. a webserver). Cloudflare attracts client requests and sends them to you via this daemon, without requiring you to poke holes on your firewall --- your origin can remain as closed as possible. Extensive documentation can be found in the Cloudflare Tunnel section of the Cloudflare Docs. All usages related with proxying to your origins are available under cloudflared tunnel help.

You can also use cloudflared to access Tunnel origins (that are protected with cloudflared tunnel) for TCP traffic at Layer 4 (i.e., not HTTP/websocket), which is relevant for use cases such as SSH, RDP, etc. Such usages are available under cloudflared access help.

You can instead use WARP client to access private origins behind Tunnels for Layer 4 traffic without requiring cloudflared access commands on the client side.

Before you get started

Before you use Cloudflare Tunnel, you'll need to complete a few steps in the Cloudflare dashboard: you need to add a website to your Cloudflare account. Note that today it is possible to use Tunnel without a website (e.g. for private routing), but for legacy reasons this requirement is still necessary:

  1. Add a website to Cloudflare
  2. Change your domain nameservers to Cloudflare

Installing cloudflared

Downloads are available as standalone binaries, a Docker image, and Debian, RPM, and Homebrew packages. You can also find releases here on the cloudflared GitHub repository.

User documentation for Cloudflare Tunnel can be found at https://developers.cloudflare.com/cloudflare-one/connections/connect-apps

Creating Tunnels and routing traffic

Once installed, you can authenticate cloudflared into your Cloudflare account and begin creating Tunnels to serve traffic to your origins.

TryCloudflare

Want to test Cloudflare Tunnel before adding a website to Cloudflare? You can do so with TryCloudflare using the documentation available here.

Deprecated versions

Cloudflare currently supports versions of cloudflared that are within one year of the most recent release. Breaking changes unrelated to feature availability may be introduced that will impact versions released more than one year ago. You can read more about upgrading cloudflared in our developer documentation.

For example, as of January 2023 Cloudflare will support cloudflared version 2023.1.1 to cloudflared 2022.1.1.

Development

Requirements

Build

To build cloudflared locally run make cloudflared

Test

To locally run the tests run make test

Linting

To format the code and keep a good code quality use make fmt and make lint

Mocks

After changes on interfaces you might need to regenerate the mocks, so run make mock