▪️k8s - 使用 Cloudflare Tunnels 訪問
2025-3-25
| 2025-3-25
字數 390閱讀時間 1 分鐘
網路架構
notion image

步驟講解

  1. 前往 Cloudflare Zero Trust 設定 tunnel
      2. notion image
  1. 在控制節點設定安裝 cloudflared 服務
    1. 先複製 token,token 位置可以從 docker 安裝看到
        2. notion image
    2. 使用 k8s 配置 cloudflared 服務 (記得替換 token value)
      1. 檢查是否連接成功
          2. notion image
    1. 設定路由相關轉發
      1. 前往公用主機名稱設定相關 DNS
          2. notion image
      2. 設定轉發相關規則
          3. notion image
          網域設定:
          • 有設定子網域會自動在 DNS 設定添加一筆 A 紀錄
          服務設定:
          • 使用 k8s service cluster dns 連接 ( service-name.namespace.svc.cluster.local )
          • 使用 traefike ingressRoute 連接 ( 連接到 traefik service 後再導向流量 ) (如上圖)
      1. 檢查是否設定正確
          2. notion image
       
      參考資料:
      在Kubernetes中建立cloudflare tunnel
      在控制叢集的電腦上安裝cloudflared
      在Kubernetes中建立cloudflare tunnel
      https://medium.com/@donba/%E5%9C%A8kubernetes%E4%B8%AD%E5%BB%BA%E7%AB%8Bcloudflare-tunnel-4cfcf3d4df74
      在Kubernetes中建立cloudflare tunnel
      Cloudflare Tunnel · Cloudflare Zero Trust docs
      Cloudflare Tunnel provides you with a secure way to connect your resources to Cloudflare without a publicly routable IP address. With Tunnel, you do not send traffic to an external IP — instead, a lightweight daemon in your infrastructure (cloudflared) creates outbound-only connections to Cloudflare's global network. Cloudflare Tunnel can connect HTTP web servers, SSH servers, remote desktops, and other protocols safely to Cloudflare. This way, your origins can serve traffic through Cloudflare without being vulnerable to attacks that bypass Cloudflare.
      Cloudflare Tunnel · Cloudflare Zero Trust docs
      https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/
      Cloudflare Tunnel · Cloudflare Zero Trust docs
       
      相關文章 :
      學習筆記
    2. kubernetes
      3. rxjs - 非同步事件處理工具Traefik - EntryPoints
      Loading...
      目錄
      0%