Hello,
I’m trying to expose Syncthing over the internet through Cloudflare’s Zero Trust tunnel. I can access the GUI over my domain, but syncing files is an issue.
I’m not running anything in Docker if that matters. Also couldn’t find much info about this in the internet.
I’ve tried forwarding TCP connections to port 22000 and setting my tunnel’s IP address in the ‘Addresses’ tab in ‘Edit Device’ settings, but with no luck.
Bad luck is hard to assist with. Concrete errors, we might be able to help you with.
When I edit the address of my remote device (RPi 5) to tcp://syncthing.example.com:22000, the connection will time out. I don’t know if it’s because of the Syncthing configuration or the tunnel configuration
Yeah, I don’t know anything about how their tunnel system works, unfortunately.
Cloudflare tunnels have limitations. They are intended to proxy web apps over https, with limited bandwidth and restricted to certain content (like not streaming, even though they may not enforce it til it becomes a problem). I don’t know if it it’s because of this though.
It can also be as slow as Synchting rekays.
If you have a VPS, you can run an always on node and get fast speeds.
Cloudflare terminates TLS on their servers, and scans the traffic. All data proxied through Cloudflare tunnels are accessibile to cloudflare in plain text.
I suppose this affects syncthing also, can you confirm?
Syncthing uses device IDs for authentication. However, after authentication, the communication between two peers is based on standard TLS using TLS certificates generated on device. If that’s how it works, then the communication will not be end to end encrypted. The peers receive the cloudflare certificate.
OK, Syncthing is not going to connect through that stuff.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.