What's the benefit of Cloudflare Tunnel over just using Wireguard?

radicality 9 hours ago | parent | next [-]

Same question from me too - I do have a few services on my homelab at home - stuff like a NAS, synology surveillance, homeassistant, few lxc containers hosting random services on Proxmox - and it all works just fine for my needs with standard WireGuard vpn setup on all my devices (macbook/ipad/iphone/android). What would cloudflare tunnel get me?

▲

antihero 9 hours ago | parent | prev | next [-]

It's free and simple and handles HTTPS termination and can be set up easily using terraform/pulumi.

Interestingly, in the early hours of this morning I switched from Cloudflare Tunnels to a rathole/traefik based solution (well, currently it's port forwarding and a low grade home-baked dyndns solution until I get paid and can afford a cheap hetzner box because I spent all of my money again).

I switched back because I didn't like the added complexity of having to manage the routes, what I'm using it for is technically against ToS, and I like the self-contained nature of my microk8s cluster.

	▲	cassianoleal 8 hours ago \| parent [-]
		> handles HTTPS termination I understand a lot of people run services locally for other reasons, but HTTPS termination defeats any privacy argument. Cloudflare are essentially the largest MitM data collector in the world. A few people started moving their data out of the cloud and they saw the gap. Now they're plugging that gap "for free".

▲

lostmsu 3 hours ago | parent | prev [-]

I just add Yggdrasil to all my nodes. Removes the need to deal with nginx also.