The second solution is obviously way better in terms of scale and memory footprint, especially if you're in an environment where possibly you can be doing this for 200-300 hosts, 200-300 services might be really difficult to manage and a single configuration file might be much easier. For example, iDRAC for servers, SSH for switches, etc. In our case, we want a "host" that pretty much does tunnelling for a lot of devices that can't run cloudflared. I know this is really important especially with pushing Argo as a VPN replacement. It would obviously imply a lot more work (but I don't know the internal architecture and how easy that might be). This one is a bit more complex and it might be not backwards compatible but simply having the same executable create multiple tunnels might be super productive and useful. This means that you can do something like systemctl start and it will start it up by using the config file in /etc/cloudflared/ssh.yml - this means that all you need to do is drop a file in /etc/cloudflared and then start up that unit. Once that section is updated, we can use templated systemd files: And just use PuTTy to connect to the Cloudflare subdomain and authenticate with user and password Because I need to SSH into the server from different clients, and I don't want to always install cloudflared on each client beforehand. Path: "/etc/systemd/system/rvice",ĮxecStart= -config /etc/cloudflared/config.yml -origincert /etc/cloudflared/cert.pem -no-autoupdate Can you connect to SSH Argo Tunnel server from a client without using additional software (cloudflared).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |