CD
Cloudflare Developers8mo ago
proudparrot2

Minecraft server over Cloudflare Zero Trust Tunnels

A few months ago, I connected a Cloudflare tunnel to my cloud server and linked a domain to tcp://localhost:25565 in order to play on a Minecraft server, and it worked fine. However, I am unable to reproduce this to play on a new Minecraft server. Was there an update to tunnels that blocked this? If not, could you help me troubleshoot my current setup? I want to be able to link a domain to my Minecraft server without revealing my origin IP to prevent abuse.
18 Replies
Akama Aka
Akama Aka8mo ago
Tunnels can be very unstable for that.
proudparrot2
proudparrot2OP8mo ago
Weird, because it worked fine before
Chaika
Chaika8mo ago
not sure what he means by that but you'd need to use either cloudflared access locally or warp locally ?tunnel-tcp
Flare
Flare8mo ago
Cloudflare Tunnels use Cloudflare's proxy, which only supports proxying HTTP Traffic. If you want to use non-http applications over your tunnel, Cloudflare has a few other options: For a few specific protocols such as SSH, RDP, and SMB, Cloudflare has guides for them here: https://developers.cloudflare.com/cloudflare-one/applications/non-http/ For Arbitrary TCP like Minecraft, MySQL, and any other tcp application, Cloudflare has a guide here: https://developers.cloudflare.com/cloudflare-one/applications/non-http/arbitrary-tcp/ For Arbitrary UDP like Minecraft Bedrock, SMTP, and any other udp application, you will need to use Private Networking with WARP: https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/private-net/connect-private-networks/ Please note for all of these except SSH and VNC which can be browser-rendered, you will either need to use cloudflared (Cloudflare's tunnel daemon) on the client machine running in the background or Private Networking with WARP, and have WARP installed on the client machine logged into your Zero Trust Team.
proudparrot2
proudparrot2OP8mo ago
This wasn’t the case previously, is this a new change?
Chaika
Chaika8mo ago
no
proudparrot2
proudparrot2OP8mo ago
interesting
Chaika
Chaika8mo ago
it's a fundamental limitation of how tunnels and the cf proxy works if it was working before, I'd guess DNS Cache if there was an old unproxied record there before, or some other confusion
proudparrot2
proudparrot2OP8mo ago
weird okay thanks
Akama Aka
Akama Aka8mo ago
@proudparrot2 Its also not recommended to host Game Servers with udp because UDP is a protocoll that gives a f if packages dont reach his destination.
Chaika
Chaika8mo ago
What? Most of the time you can't control what protocol a gameserver uses, it's set by the creators, and UDP is used for a ton of games. You don't need every movement update for example. Lots of cases where you just want the latest/fastest update, and reliable protocols like QUIC built on top of udp
Akama Aka
Akama Aka8mo ago
Yea but 25565 is TCP or not? Aka minecraft uses tcp
Chaika
Chaika8mo ago
It can be either? Ports are just ports.
Akama Aka
Akama Aka8mo ago
yes
Chaika
Chaika8mo ago
DNS for example is both 53/udp and 53/tcp
Akama Aka
Akama Aka8mo ago
yes BUt I mean just minecraft
Chaika
Chaika8mo ago
Java Minecraft is forced/always tcp (sadly), Bedrock Minecraft is UDP
Akama Aka
Akama Aka8mo ago
ah okay
Want results from more Discord servers?
Add your server