cloudflare tunnel 404 forbidden that affect on website without zerotrust too
Hey how can I fix the error 403 forbidden with cloudflare tunnel?
Subdomain without access to polish / mirage it's on freeplan so no paid features.
The cloudflare tunnel only works on two of my domains on my main domain host me.co.il and on linux.repair, all my other 9 domains get 404 forbidden while trying to reach them, the traffic most of the time doesn't arrive to my server it got stuck in CF.
What can I do to fix this issue once for all?
I already had this issue but now I can see the rocket loader working on my main domain.
19 Replies
Update: I moved one of my domains to a new cloudflare account and now the access to this domain works perfect
??
What's the 403 look like? a blank page? normal cf block page?
do you see anything in your tunnel logs (
journalctl -u cloudflared -f --lines=100 if on a systemd linux server)?it does it with and without cloudflared
For now the domain already moved to the new cloudflare account so I can't see it because its working now
Still, what did it look like? What it a blank 403 page? or a Cloudflare looking one? 403s can come from a lot of places, CF, the tunnel, or your origin
yes blank white page with 404 Forbidden
I'll try to replicated it with other domain give me a sec
404 is not found, 403 is forbidden
yes 403*
If it was entirely blank, it makes me think you enabled Cloudflare Access on that Public Hostname under Adv. Settings, or otherwise the tunnel may be rejecting it in some way, I would check tunnel logs to start
Last time I head something similar to it that was the Rocket loader I think.
Or something that does something similar to it
but 'm not sure because I can't find the history of the chat here
I've never heard of Rocket Loader doing that. You could check the headers if you get the issue again, if there's no cf-cache-status it's something within CF doing it, maybe check Security Events. If there is, it's downstream
there wasn't any events
last time it was Ralgun
now I don't know what it can be
Railgun doesn't work with tunnels yea
Do you have a url of a page that doesn't work?
Railgun wasn't configured it just was enabled
yea, I think just having it enabled would do that
Now its working since its on new Cf account
How can I completely disable it for all of my account ?
looks like I was wrong, I looked up old messages and it looks like it just needs to be disabled/not configured
I would be more curious about your configuration. You have Public Hostnames set up for each domain you want to use, right?
Keep in mind tunnels only work on the same account as they are created on as well
I know
I have more than 6 domains
reverting back the problematic domain to the old account
Btw, Railgun is going EOL (full plug-pull) in January, so it may be worth investigating alternate tools/solutions around caching server-side and in CF, since it will break on that date. I don’t think Railgun will ever become officially supported with Tunnels because of this.
The Cloudflare Blog
Cloudflare is deprecating Railgun
Cloudflare will deprecate Railgun on January 2024