Block all requests except WARP that matches certain users
Is it possible to WAF or Zero Trust somehow this way with WARP (Zero Trust Connected).
Goal is to block all requests, except a list of users that are connected with WARP (Zero Trust).
I do not wish to show the Zero Trust Login page, as I would ideally like the device to either be connected or not. So that once connected, even headless applications running on the device can access the site.
Any ideas? What is this called? Can it be done? What plans are required?
1 Reply
It's called Require Gateway: https://developers.cloudflare.com/cloudflare-one/identity/devices/warp-client-checks/require-gateway/
You need to add it with the "Service Auth" action to completely skip the login page. Any plan.
Cloudflare Docs
Require Gateway | Cloudflare Zero Trust docs
With Require Gateway, you can allow access to your applications only to devices enrolled in your organization’s instance of Gateway. Unlike Require WARP, which will check for any WARP instance (including the consumer version), Require Gateway will only allow requests coming from devices whose traffic is filtered by your organization’s Cloudflare...