10 Replies
You need to access via cloudflared on the client. https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/use-cases/ssh/#connect-to-ssh-server-with-cloudflared-access
Cloudflare Docs
SSH | Cloudflare Zero Trust docs
The Secure Shell Protocol (SSH) enables users to remotely access devices through the command line. With Cloudflare Zero Trust, you can make your SSH server available over the Internet without the risk of opening inbound ports on the server.
So if i want to access the ssh, i will need to have cloudflared installed on every one of my client device?
yes, but you can setup a web page with the ssh terminal on that (this is what i use) https://developers.cloudflare.com/cloudflare-one/applications/non-http/#enable-browser-rendering
okay, thanks
this doesn't give you a direct ssh connection but it still allows you to run ssh commands on the remote server.
To hijack this thread, what if we want to expose an ssh port? I find it odd we can expose an http without access, but not ssh.
You would need to use Spectrum which is a paid service
Except it doesn’t look like you can connect a tunnel to spectrum.
You can through LB: https://blog.cloudflare.com/extending-local-traffic-management-load-balancing-to-layer-4-with-spectrum/ more recent and I believe fully Enterprise since only Spectrum Ent get the LB target option
(not that non-Enterprise Spectrum is very usable anyway..)
So basically don’t use cloudflare for a public ssh service.