Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

luci-app-cloudflared: configure Cloudlfare Zero Trust Tunnel #6876

Merged
merged 1 commit into from
Feb 1, 2024
Merged

luci-app-cloudflared: configure Cloudlfare Zero Trust Tunnel #6876

merged 1 commit into from
Feb 1, 2024

Conversation

stokito
Copy link
Contributor

@stokito stokito commented Jan 31, 2024

Configure a tunnel and see logs of the daemon.

Screenshot luci-app-cloudflared

Replaces #6834

@stokito stokito mentioned this pull request Jan 31, 2024
Closed
@stokito
Copy link
Contributor Author

stokito commented Jan 31, 2024

I also added a code to extract a token from the run command. The Cloudflare dashboard has a button to copy the command.

@stokito
Copy link
Contributor Author

stokito commented Jan 31, 2024
edited
Loading

@1715173329 @oskarirauta @scottmckenzie @jjpinom
You must be interested in the app. Can you please try it and test?

@jjpinom
Copy link

jjpinom commented Jan 31, 2024

Hello @stokito , thanks.

I've already tested it. I was able to establish a Coudflared Tunnel but the tunnel does not start automatically upon OpenWRT start.

@systemcrash
Copy link
Contributor

Hello @stokito , thanks.

I've already tested it. I was able to establish a Coudflared Tunnel but the tunnel does not start automatically upon OpenWRT start.

Is this a luci problem or the cloudflared app problem? You might need to check syslog and see what's up there.

If you're okay with it, @stokito could add your Tested-by: tag.

@stokito stokito mentioned this pull request Feb 1, 2024
Merged
@stokito
Copy link
Contributor Author

stokito commented Feb 1, 2024

@jjpinom

but the tunnel does not start automatically upon OpenWRT start.

I don't have such problem and it's unlikely to happen. But the tunnel first tried to establish an HTTP3 connection and then fails so this may take more than 2 minutes. Maybe you faced this problem. Please check logs and create a bug report.

Anyway, this is not related to the app itself.

The PR can be merged as for me. The app allows to configure the tunnel without using a command line and this extends user base significantly.

systemcrash
systemcrash requested changes Feb 1, 2024
View reviewed changes
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/config.js Outdated Show resolved Hide resolved
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/config.js Outdated Show resolved Hide resolved
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/log.js Outdated Show resolved Hide resolved
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/config.js Outdated Show resolved Hide resolved
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/config.js Outdated Show resolved Hide resolved
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/config.js Outdated Show resolved Hide resolved
applications/luci-app-cloudflared/htdocs/luci-static/resources/view/cloudflared/config.js Outdated Show resolved Hide resolved
@animegasan @stokito
luci-app-cloudflared: configure Cloudflare Zero Trust Tunnel
c79911c 
Configure a tunnel and see logs of the daemon.

Signed-off-by: Hilman Maulana <[email protected]>
Signed-off-by: Sergey Ponomarev <[email protected]>
@systemcrash systemcrash merged commit faf6c4f into openwrt:master Feb 1, 2024
5 checks passed
@systemcrash
Copy link
Contributor

Nice! Thank you.

@stokito stokito deleted the animegasan branch February 1, 2024 17:09
@stokito
Copy link
Contributor Author

stokito commented Feb 1, 2024

Thank you and to you @animegasan

@stokito
Copy link
Contributor Author

stokito commented Feb 3, 2024

I created a support topic on a forum:
https://community.cloudflare.com/t/openwrt-support/610306
Please subscribe to it.

Also please check the Wiki page https://openwrt.org/docs/guide-user/services/vpn/cloudfare_tunnel

@1715173329
Copy link
Member

Also please check the Wiki page https://openwrt.org/docs/guide-user/services/vpn/cloudfare_tunnel

I saw you added two sysctl configurations, if it is necessary could you please create a PR against cloudflared package? Thanks.

It can be put into /etc/sysctl.d/30-cloudflared-conf as a file:

net.ipv4.ping_group_range="0 429296729"
net.core.rmem_max=2500000

@stokito
Copy link
Contributor Author

stokito commented Feb 3, 2024
edited
Loading

I don't know if it's safe to add this settings. Also increasing net/core/rmem_max may be problematic if a router lacks of memory.
A tunnel works despite the warning.

This wiki article was initially written by @oskarirauta

But I anyway wish to send a PR to remove the url: http://localhost:8000 from config.yml and to comment out everything else there because the cloudflared fails to start.

UPD openwrt/packages#23273

@stokito
Copy link
Contributor Author

stokito commented Feb 3, 2024

I also made a new PR to the app. Please review: #6887

@stokito
Copy link
Contributor Author

stokito commented Feb 9, 2024

I posted current status and issues on the CF forum https://community.cloudflare.com/t/openwrt-support/610306/3

Please join the discussion there.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@1715173329 1715173329 1715173329 left review comments

@systemcrash systemcrash systemcrash approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@stokito @jjpinom @systemcrash @1715173329 @animegasan