{"id":5578,"date":"2023-04-01T11:37:05","date_gmt":"2023-04-01T09:37:05","guid":{"rendered":"https:\/\/dmesg.app\/?p=5578"},"modified":"2023-04-21T20:51:15","modified_gmt":"2023-04-21T18:51:15","slug":"cf-zero-trust","status":"publish","type":"post","link":"https:\/\/dmesg.app\/cf-zero-trust.html","title":{"rendered":"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51"},"content":{"rendered":"<div  class=\"sc_act\">\u8fd9\u7bc7\u6587\u7ae0\u5728 2023\u5e7404\u670821\u65e520:51:15 \u66f4\u65b0\u4e86\u54e6~<\/div><p>\u521b\u5efa\u5927\u5185\u7f51\u662f\u4e00\u4ef6\u975e\u5e38\u91cd\u8981\u7684\u4e8b\u60c5\u3002\u4e00\u65e6\u6709\u4e86\u5b89\u5168\u7684\u5185\u7f51\u73af\u5883\u4e4b\u540e\uff0c\u6211\u7684\u670d\u52a1\u5668\u4e4b\u95f4\u5c31\u53ef\u4ee5\u4f7f\u7528\u79c1\u6709IP\u8fdb\u884c\u901a\u4fe1\uff0c\u4e0d\u7528\u518d\u8003\u8651\u8fd9\u4e2a\u534f\u8bae\u662f\u5426\u9002\u5408\u66b4\u9732\u5728\u516c\u7f51\u4e0a\u3001\u662f\u5426\u4f1a\u88abMITM\u7b49\u95ee\u9898\u4e86\u3002\u7ba1\u4ed6\u4ec0\u4e48\u534f\u8bae\u7684\uff0ctelnet\u6211\u90fd\u7167\u6837\u8dd1\ud83e\udd2a\uff01<\/p>\n<p>\u901a\u5e38\u6765\u8bf4\uff0c\u6211\u662f<a href=\"https:\/\/nova.moe\/deploy-wireguard-on-ubuntu-bionic\/\">\u4f7f\u7528WireGuard\u6765\u521b\u5efa\u5185\u7f51<\/a>\u7684\u3002\u9009\u62e9\u4e00\u4e2a\u673a\u5668\u4f5c\u4e3a\u201c\u670d\u52a1\u5668\u201d\uff0c\u5176\u4ed6\u7684\u8282\u70b9\u4f5c\u4e3a\u5ba2\u6237\u7aef\u52a0\u8fdb\u6765\u5c31\u597d\u4e86\u3002<s>\u8fd9\u4e5f\u662f\u4e1a\u754c\u6700\u4e3a\u6210\u719f\u7684\u65b9\u6848\u4e86<\/s><\/p>\n<p>\u4f46\u662f\u8fd9\u6837\u505a\u4ecd\u6709\u4e00\u4e9b\u9650\u5236\u548c\u7f3a\u9677\uff0c\u6bd4\u5982\u8bf4\uff1a<\/p>\n<ul>\n<li>\u5982\u4f55\u66b4\u9732\u6574\u4e2a\u5bb6\u5ead\u5185\u7f51\uff0c\u5982<code>192.168.7.0\/24<\/code> \u7ed9\u51fa\u95e8\u5728\u5916\u7684\u6211\uff0c\u5bb6\u91cc\u7684\u6bcf\u4e00\u4e2a\u8bbe\u5907\u90fd\u8981\u901a\u8fc7WireGuard\u52a0\u8fdb\u6765\u5417\uff0c\u6216\u8005\u5199\u5947\u5947\u602a\u602a\u7684iptables\u89c4\u5219\uff1f<\/li>\n<li>\u6240\u6709\u7684\u6570\u636e\u8981\u901a\u8fc7\u201c\u670d\u52a1\u5668\u201d\u4e2d\u8f6c\uff0c\u4e24\u4e2a\u7f8e\u56fd\u7684\u670d\u52a1\u5668\u660e\u660e\u76f4\u63a5\u5c31\u80fd\u6c9f\u901a\uff0c50ms\u89e3\u51b3\uff0c\u5982\u679cWG\u670d\u52a1\u5668\u5728\u4e9a\u6d32\uff0c\u90a3\u4e48\u5c31\u57fa\u672c\u4e0a300ms\u5de6\u53f3\u4e86<\/li>\n<li>\u7a77\u5230\u4e70\u4e0d\u8d77\u670d\u52a1\u5668\uff0c\u6ca1\u6709\u516c\u7f51IP<\/li>\n<\/ul>\n<p>\u5728\u8fd9\u79cd\u60c5\u51b5\u4e0b\uff0c\u6700\u597d\u7684\u529e\u6cd5\u5c31\u662f\u7528Cloudflare Zero Trust\u4e2d\u7684tunnel\u5566\uff01<\/p>\n<p>\u4e4b\u524d\u7b80\u5355\u7684\u63d0\u8fc7\u6211\u5df2\u7ecf\u628a<a href=\"https:\/\/dmesg.app\/argo-real-ip.html\">\u6240\u6709\u7684web\u670d\u52a1\u90fd\u901a\u8fc7argo tunnel \u66b4\u9732\u4e86<\/a>\uff0c\u62d3\u6251\u56fe\u5927\u6982\u662f\u8fd9\u6837\uff0c\u4eceCloudflare\u90a3\u8fb9\u5077\u8fc7\u6765\u7684\uff1a<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101321423.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u5728\u6211\u7684\u670d\u52a1\u5668\u4e0a\u5b89\u88c5<code>cloudflared<\/code>\uff0c\u7136\u540e\u6dfb\u52a0Public Hostname\uff0c\u6240\u6709\u7684\u8bbf\u95ee\u76f4\u63a5\u4eceCloudflare\u7684\u7f51\u7edc\u6765\u3002\u5b89\u5168\u4e14\u73af\u4fdd\uff01<\/p>\n<p>\u90a3\u4e48Cloudflare tunnel\u8fd8\u6709\u90a3\u4e9b\u6709\u8da3\u7684\u7528\u6cd5\u5462\uff1f\u5148\u4ece\u66b4\u9732\u6574\u4e2a\u5bb6\u5ead\u5185\u7f51\u6765\u8bf4\u5427\uff01\u540c\u6837\u7684\u9053\u7406\uff0c\u6211\u4eec\u9700\u8981\u5728\u5bb6\u91cc\u8fd0\u884c\u4e00\u4e2acloudflared connector\uff0c\u7136\u540e\u5176\u4ed6\u7ec8\u7aef\u8bbe\u5907\u901a\u8fc7WARP\u8fde\u63a5\u5230Cloudflare\uff0c\u7136\u540e\u628a\u6574\u4e2a\u7f51\u7edc\u66b4\u9732\u7ed9\u7ec8\u7aef\u8bbe\u5907\uff0c\u62d3\u6251\u56fe\u5982\u4e0b\uff1a<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323051.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<hr \/>\n<h1>\u66b4\u9732\u5bb6\u5ead\u5185\u7f51<\/h1>\n<h2>\u83b7\u53d6team domain<\/h2>\n<p>\u6253\u5f00Cloudflare Zero Trust\uff0c\u8bbe\u7f6e\u91cc\u5c31\u53ef\u4ee5\u770b\u5230\u4f60\u7684team name\uff0c\u6211\u8fd9\u91cc\u5c31\u662f<code>bennythink<\/code>\u5566<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/202304010132311.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u914d\u7f6e\u7f51\u7edc\u534f\u8bae<\/h2>\n<p>Settings-network\uff0c\u627e\u5230proxy\uff0c\u628aTCP\u3001UDP\u3001ICMP\u548cWARP to WARP\u90fd\u6253\u5f00\uff08\u8fd9\u4e2a\u540e\u7eed\u8981\u7528\uff09<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323257.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u521b\u5efaWARP \u8bbe\u5907\u6ce8\u518c\u6743\u9650<\/h2>\n<p>\u9996\u5148\u8981\u5b9a\u4e49\u5982\u4f55\u6ce8\u518c\u8bbe\u5907\uff0c\u7b80\u5355\u7684\u6765\u8bf4\u901a\u8fc7\u90ae\u7bb1\u5c31\u597d\u4e86\u3002\u6bd4\u5982\u8bf4\u4e00\u4e2a\u516c\u53f8\u7684\u4eba\uff0c\u7528\u516c\u53f8\u540e\u7f00\u7684\u90ae\u7bb1\u8fde\u63a5\u5230\u540c\u4e00\u4e2a\u5185\u7f51\u3002\u5728Zero Trust\u7684\u9762\u677f\u4e2d\uff0cSettings - WARP client - Dvice enrollment permission<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323341.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323478.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u521b\u5efa WARP Profile<\/h2>\n<p>\u6240\u8c13Profile\uff0c\u5c31\u662f\u5b9a\u4e49\u4ec0\u4e48\u7528\u6237\u4f7f\u7528\u4ec0\u4e48\u6837\u7684WARP\u7684\u89c4\u5219\uff0c\u89c4\u5219\u5305\u62ec\u7528\u6237\u80fd\u5426\u65ad\u5f00\uff0c\u81ea\u52a8\u91cd\u8fde\u7b49\uff0c\u5176\u4e2d\u6700\u91cd\u8981\u7684\u662f\u8def\u7531\u89c4\u5219\u3002<\/p>\n<p>\u5982\u56fe\uff0c\u5728\u6b64\u6211\u914d\u7f6e\u7684<code>home@dmesg.app<\/code> \u8fd9\u4e2a\u7528\u6237\u7684\u89c4\u5219<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323579.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>Split tunnel\u7528\u6765\u914d\u7f6e\u5982\u4f55\u5206\u53d1\u6d41\u91cf\uff0c\u5206\u4e3a\u4e24\u79cd\u6a21\u5f0f\uff0c<strong>include\u548cexclude<\/strong>\uff0c\u6709\u70b9\u50cf\u9ed1\u540d\u5355\u767d\u540d\u5355\u7684\u6982\u5ff5\u3002<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323644.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<ul>\n<li>Include\uff0c\u5c31\u50cfWireGuard <code>allowIP<\/code>\u914d\u7f6e\u4e3a<code>192.168.6.0\/24<\/code>\u4e00\u6837\uff0c\u53ea\u6709\u8fd9\u4e2a\u7f51\u6bb5\u7684\u6d41\u91cf\u4f1a\u8d70WireGuard\uff0c\u5176\u4ed6\u6d41\u91cf\u4f1a\u76f4\u63a5\u51fa\u53bb\uff0c\u4e0d\u8d70cloudflare<\/li>\n<li>Exclude\uff0c\u5c31\u662f\u6240\u6709\u6d41\u91cf\u90fd\u8981\u8d70cloudflare\uff0c\u56e0\u6b64<code>192.168.7.0\/24<\/code>\u8d70\u4e86cloudflare\u6240\u4ee5\u53ef\u4ee5\u8bbf\u95ee\uff0c\u5217\u8868\u4e2d\u7684\u76f4\u63a5\u8fde\u63a5<\/li>\n<\/ul>\n<p>\u8bf4\u4eba\u8bdd\u7684\u8bdd\uff0c\u6bd4\u5982\u4f60\u5728\u5916\u9762\uff0c\u8981\u8bbf\u95ee\u5bb6\u91cc<code>192.168.7.0\/24<\/code>\uff0c\u5e76\u4e14<strong>\u6240\u6709\u5176\u4ed6\u6d41\u91cf\u8981\u8d70cloudflare<\/strong>\uff0c\u90a3\u4e48\u4f60\u8981\u7528exclude\u6a21\u5f0f\uff1b<\/p>\n<p>\u4f60\u5728\u5916\u9762\uff0c\u8981\u8bbf\u95ee\u5bb6\u91cc\u7684<code>192.168.7.0\/24<\/code>\uff0c<strong>\u5176\u4ed6\u6d41\u91cf\u76f4\u63a5\u51fa <\/strong><del datetime=\"2023-03-31T17:35:55+00:00\">\u4ee5\u65b9\u4fbf\u771f\u4eba\u5feb\u6253<\/del>\uff0c\u90a3\u4e48\u5c31\u8981\u7528include\u6a21\u5f0f\u3002<\/p>\n<p>\u8fd9\u91cc\u6211\u5c31\u9009\u62e9include\u6a21\u5f0f\uff0c\u56e0\u6b64\u4e0a\u56fe\u5207\u6362\u5230include\uff0c\u7136\u540e\u6dfb\u52a0IP\u6bb5\uff0cCIDR\u8868\u793a\u6cd5<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323785.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u540c\u65f6\u5728tunnel\u7684Private Network\u4e5f\u8981\u521b\u5efa\u4e00\u6837\u7684CIDR<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323865.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u770bcloudflared\u65e5\u5fd7\u53ef\u4ee5\u770b\u5230\u5df2\u7ecf\u81ea\u52a8\u66f4\u65b0\u4e86\u914d\u7f6e<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323951.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u914d\u7f6e\u5ba2\u6237\u7aef\u8fde\u63a5<\/h2>\n<p>\u5ba2\u6237\u7aef\u9700\u8981\u4e0b\u8f7dWARP\uff0c\u7136\u540e\u00a0 Login to Cloudflare Zero Trust\uff0c\u8f93\u5165team name<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101323984.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u8fdb\u884c\u90ae\u4ef6\u9a8c\u8bc1<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101324032.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u7136\u540e\u4f60\u7684warp\u5c31\u4f1a\u63a5\u6536\u5230\u65b0\u7684\u914d\u7f6e\uff0c\u8fde\u63a5\u8d77\u6765\uff0c\u5c31\u4f1a\u53d1\u73b0<code>192.168.7.0\/24<\/code>\u5df2\u7ecf\u901a\u5566<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101324165.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u5e76\u4e14\u8def\u7531\u5668\u7684\u7ba1\u7406\u754c\u9762\u662f\u6253\u5f97\u5f00\u7684<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101325018.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<hr \/>\n<h1>\u521b\u5efa\u5927\u5185\u7f51<\/h1>\n<p>\u62d3\u6251\u56fe\u5982\u4e0b\uff0c\u6240\u6709\u540c\u4e00\u4e2aorganization\uff08team\uff09\u7684WARP\u90fd\u6709\u4e00\u4e2a\u72ec\u7acb\u7684\u5185\u7f51\uff0c\u53ef\u4ee5\u5b89\u5168\u8fdb\u884c\u6570\u636e\u4ea4\u6362\u3002\u8fd8\u8bb0\u5f97\u4e0a\u9762\u5f00\u7684TCP\u3001UDP\u3001WARP to WRAP\u5417\uff1f\u8fd9\u91cc\u7528\u5230\u7684\u5c31\u662fWARP to WARP<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101325762.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" alt=\"\u56fe\u793a \u63cf\u8ff0\u5df2\u81ea\u52a8\u751f\u6210\" \/><\/p>\n<h2>\u521b\u5efaprofile<\/h2>\n<p>\u540c\u6837\u521b\u5efa\u4e00\u4e2a\u65b0\u7684profile<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101330798.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>Split tunnel\u7684\u539f\u7406\u76f8\u4fe1\u5927\u5bb6\u5df2\u7ecf\u61c2\u4e86\uff0c\u7b80\u5355\u8d77\u89c1\uff0c\u540c\u6837\u9009\u62e9include\uff0c\u53ea\u4e0d\u8fc7IP\u6bb5\u5199<code>100.64.0.0\/10<\/code>\uff0c\u8fd9\u4e2a\u662fCloudflare \u9ed8\u8ba4\u7684Virtual Network\uff0c\u4f7f\u7528\u4e86WARP\u7684\u8bbe\u5907\u4f1a\u88ab\u5206\u914d\u5230\u8fd9\u4e2aIP\u6bb5\u91cc\u3002\u8fd9\u91cc\u4e00\u5171\u6709400\u591a\u4e07\u4e2a\u53ef\u7528\u7684IP\uff0c\u6c83\u5c14\u739b\u5458\u5de5\u4eba\u624b2\u4e2aWARP\uff0c\u6216\u8005\u514b\u7f57\u5730\u4e9a\u4eba\u4e00\u4eba\u4e00\u4e2a\u90fd\u8db3\u591f\ud83e\udd23<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101331898.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u6ce8\u518c\u8bbe\u5907<\/h2>\n<p>\u5b89\u88c5warp-cli\uff0c\u7136\u540e<\/p>\n<pre class=\"prettyprint linenums\">warp-cli teams-enroll bennythink\r\n<\/pre>\n<p>\u5728\u4f60\u7684\u6d4f\u89c8\u5668\u4e0a\u6253\u5f00\u94fe\u63a5\uff0c\u8f93\u5165\u90ae\u7bb1<code>wg@dmesg.app<\/code>\u9a8c\u8bc1\uff0c\u4f46\u662f\u5e76\u6ca1\u6709\u4efb\u4f55\u4fe1\u606f\u544a\u8bc9\u4f60\u600e\u4e48\u6253\u5f00\u7ec8\u7aef\u91cc\u7684warp-cli\uff0c\u90a3\u600e\u4e48\u529e\u5462\uff1f\u522b\u6015\uff0c\u6253\u5f00F12\uff0c\u627e\u5230Open Cloudflare WARP\u90a3\u4e2a\u6309\u94ae\u7684\u5143\u7d20\uff0c\u627e\u5230<code>onclick<\/code>\u4e8b\u4ef6\uff0c\u590d\u5236\u4ece<code>com.cloudflare.warp<\/code>\u5f00\u59cb\u7684\u4fe1\u606f\u5230\u7ed3\u5c3e\u7684\u5355\u5f15\u53f7<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101333518.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u7136\u540e\u5728\u7ec8\u7aef\u4e2d\uff1a<\/p>\n<pre class=\"prettyprint linenums\">warp-cli teams-enroll-token com.cloudflare.warp:\/\/bennythink.cloudflareaccess.com\/auth?token=\r\n<\/pre>\n<div id=\"sc_error\">\u8b66\u544a\uff1a<br \/>\n\u5982\u679c\u4f60\u4f7f\u7528\u7684\u662fzsh\uff0c\u8bb0\u5f97\u7ed9\u90a3\u6bb5token\u4e0a\u7528\u5f15\u53f7\u5305\u8d77\u6765 \"your-token-with?weird\/=+stuff\"\u6216\u8005\u5207\u6362\u5230bash<\/div>\n<h2>\u8fde\u63a5\u8bbe\u5907<\/h2>\n<pre class=\"prettyprint linenums\">\u03bb maria-pl ~ \u2192 warp-cli status\r\nStatus update: Disconnected. Reason: Manual Disconnection\r\nSuccess\r\n\r\n\u03bb maria-pl ~ \u2192 warp-cli connect\r\nSuccess\r\n<\/pre>\n<p>\u5728Zero Trust - My team - Devices\u4e2d\u5c31\u53ef\u4ee5\u770b\u5230\u4f60\u7684\u8fd9\u4e2a\u8bbe\u5907\u7684IP\u5730\u5740\u4e86\uff01<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101352637.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>\u540c\u7406\uff0c\u8fde\u63a5\u53e6\u5916\u4e00\u4e2a\u8bbe\u5907\uff0c\u540c\u6837\u7684\u90ae\u7bb1\u5c31\u53ef\u4ee5\u3002<\/p>\n<h2>\u6d4b\u8bd5\u5185\u7f51\u4e92\u8054<\/h2>\n<p>\u76f4\u63a5ssh\u8fc7\u53bb\u8bd5\u8bd5\u770b<\/p>\n<pre class=\"prettyprint linenums\">\u03bb maria-pl ~ \u2192 nc -v 100.96.0.14 22\r\nConnection to 100.96.0.14 22 port [tcp\/ssh] succeeded!\r\nSSH-2.0-OpenSSH_8.9p1 Ubuntu-3\r\n^C\r\n\r\n\u03bb maria-pl ~ \u2192 ssh 100.96.0.14\r\nThe authenticity of host &#039;100.96.0.14 (100.96.0.14)&#039; can&#039;t be established.\r\nED25519 key fingerprint is SHA256:Gffeu3+72Z9pwZDawOHGSN7M2JxrbBub1hZoueKGJ1o.\r\nThis key is not known by any other names\r\nAre you sure you want to continue connecting (yes\/no\/[fingerprint])?\r\n<\/pre>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101352719.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<p>iperf3\u6d4b\u8bd5<\/p>\n<p>\u901f\u5ea6\u4e5f\u8fd8\u4e0d\u9519\uff0c\u672c\u6765\u5e26\u5bbd\u4e5f\u662f100Mbps<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101352925.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u5ef6\u8fdf\u6d4b\u8bd5<\/h2>\n<p>\u5ef6\u8fdf\u7565\u6709\u589e\u5927\uff0c\u53ef\u80fd\u662fpeer\u8fde\u63a5\u5230\u4e86\u4e0d\u540c\u7684\u6570\u636e\u4e2d\u5fc3\u5bfc\u81f4\u7684\u3002\u4f46\u662f\u80af\u5b9a\u4e0d\u4f1a\u51fa\u73b0\u7f8e\u56fd-\u65e5\u672c-\u7f8e\u56fd\u8fd9\u79cd\u7ed5\u5708\u5708\u7684\u6a21\u5f0f\u4e86\u3002<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/202304010135315.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" \/><\/p>\n<h2>\u5982\u4f55\u4f7f\u7528\u81ea\u5b9a\u4e49\u7684\u7f51\u6bb5<\/h2>\n<p>\u5982\u679c\u4e0d\u559c\u6b22\u4e0a\u9762\u7684<code>100.96.0.0\/10<\/code>\u7f51\u6bb5\uff0c\u600e\u4e48\u5207\u6362\u5230\u81ea\u5df1\u7684\u7f51\u6bb5\u5462\uff0c\u6bd4\u5982<code>192.168.6.0\/24<\/code>\uff1f<\/p>\n<p>\u6839\u636e\u6587\u6863\u6765\u8bf4\uff0c\u4f3c\u4e4e\u662f\u53ef\u4ee5\u901a\u8fc7\u521b\u5efa\u81ea\u5df1\u7684Virtual network\uff08\u8fd8\u4e0d\u80fd\u5728\u7f51\u9875\u4e0a\u521b\u5efa\uff09\uff0c\u7136\u540eWARP\u8fde\u63a5\u7684\u65f6\u5019\u9009\u62e9\u8fd9\u4e2anetwork\uff0c\u7136\u540eIP\u5c31\u5e94\u8be5\u662f\u4f60\u5b9a\u4e49\u7684\u800c\u4e0d\u662f<code>100.96<\/code>\u4e4b\u7c7b\u7684\u4e86<\/p>\n<pre class=\"prettyprint linenums\">cloudflared tunnel vnet add private\r\ncloudflared tunnel route ip add --vnet private 192.168.89.0\/24 home\r\n\r\nwarp-cli get-virtual-networks\r\nwarp-cli set-virtual-network UUID\r\nwarp-cli connect\r\n<\/pre>\n<p>\u4f46\u662f\u6211\u6d4b\u8bd5\u7684\u65f6\u5019\uff0c\u65e0\u8bba\u662fCLI\u8fd8\u662fmacOS WARP\uff0c\u5373\u4f7f\u9009\u62e9\u4e86\u65b0\u5efa\u7684\u7f51\u7edc\uff0c\u7f51\u9875\u4e0a\u770b\u5230\u7684IP\u4e5f\u59cb\u7ec8\u662f<code>100.96<\/code>\uff0c\u4e0d\u77e5\u9053\u4e3a\u4f55\uff0c\u53ef\u80fd\u662f\u4ed6\u4eec\u7684bug<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/7bc5d24.webp.ee\/wp-content\/uploads\/2023\/03\/2023040101354065.png\" alt=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" title=\"\u4f7f\u7528Cloudflare Zero Trust\u521b\u5efa\u5927\u5185\u7f51\" alt=\"\u56fe\u5f62\u7528\u6237\u754c\u9762, \u6587\u672c, \u5e94\u7528\u7a0b\u5e8f, \u804a\u5929\u6216\u77ed\u4fe1 \u63cf\u8ff0\u5df2\u81ea\u52a8\u751f\u6210\" \/><\/p>\n<h2>\u5176\u4ed6<\/h2>\n<p>Zero Trust\u8fd8\u6709\u5f88\u591a\u597d\u73a9\u7684\u73a9\u6cd5\uff0c\u6bd4\u5982\u53ef\u4ee5\u7ed9\u4e0d\u540c\u7528\u6237\u914d\u7f6e\u4e0d\u540c\u7684\u7f51\u7edc\u8bbf\u95ee\u89c4\u5219\uff0c\u79c1\u6709DNS\uff0c\u53ef\u63a7\u7f51\u7edc\uff08\u5c31\u662f\u5728\u5bb6\u91cc\u8fde\u5230VPN\uff0c\u5728\u516c\u53f8\u76f4\u63a5\u8d70\u5185\u7f51\uff0c\u4e0d\u662f\u6839\u636eSSID\u5224\u65ad\uff09\uff0c\u4ee5\u53ca\u5927\u5bb6\u90fd\u7231\u7684\u4e2d\u8f6c\u68af\u5b50\u7b49\u7b49\u73a9\u6cd5\u3002\u6709\u7a7a\u53ef\u4ee5\u518d\u63a2\u7d22\u63a2\u7d22\u3002<\/p>\n<p>Cloudflare \u7684WARP\u76f4\u63a5\u7528\u8d77\u6765\u4e5f\u4e0d\u9519\uff0c\u6bd4\u5982\u5728\u516c\u53f8\u3001\u5916\u9762\u7684\u516c\u5171Wi-Fi\uff0c\u6211\u90fd\u662f\u76f4\u63a5\u6253\u5f00\u7684\uff0c\u4f53\u9a8c\u975e\u5e38\u597d\uff0c\u5728\u4e0d\u9700\u8981\u6362IP\u7684\u60c5\u51b5\u4e0b\uff0c\u53ef\u6bd4\u4e70\u7684\u90a3\u4e2aSurfshark VPN\u597d\u591a\u4e86\ud83e\udd78<\/p>\n<p>\u518d\u6b21\u611f\u53f9\uff0cCloudflare\u771f\u662f\u4e00\u5bb6\u4f1f\u5927\u7684\u516c\u53f8\u3002<strong>Cloudflare \u7684\u4f7f\u547d\u662f\u5e2e\u52a9\u5efa\u7acb\u4e00\u4e2a\u66f4\u597d\u7684\u4e92\u8054\u7f51<\/strong>\ud83d\udc4d<\/p>\n<p><a href=\"https:\/\/developers.cloudflare.com\/cloudflare-one\/connections\/connect-apps\/private-net\/create-private-networks\/\">https:\/\/developers.cloudflare.com\/cloudflare-one\/connections\/connect-apps\/private-net\/create-private-networks\/<\/a><\/p>\n<p><a href=\"https:\/\/help.teams.cloudflare.com\/\">https:\/\/help.teams.cloudflare.com\/<\/a><\/p>\n<p><a href=\"https:\/\/developers.cloudflare.com\/cloudflare-one\/connections\/connect-apps\/\">https:\/\/developers.cloudflare.com\/cloudflare-one\/connections\/connect-apps\/<\/a><\/p>\n<p><a href=\"https:\/\/developers.cloudflare.com\/cloudflare-one\/tutorials\/warp-to-tunnel\/\">https:\/\/developers.cloudflare.com\/cloudflare-one\/tutorials\/warp-to-tunnel\/<\/a><\/p>\n<p><a href=\"https:\/\/dash.cloudflare.com\/argotunnel\">https:\/\/dash.cloudflare.com\/argotunnel<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u8fd9\u7bc7\u6587\u7ae0\u5728 2023\u5e7404\u670821\u65e520:51:15 \u66f4\u65b0\u4e86\u54e6~\u521b\u5efa\u5927\u5185\u7f51\u662f\u4e00\u4ef6\u975e\u5e38\u91cd\u8981\u7684\u4e8b\u60c5\u3002\u4e00\u65e6\u6709\u4e86\u5b89\u5168\u7684\u5185 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[61],"tags":[],"class_list":["post-5578","post","type-post","status-publish","format-standard","hentry","category-cloudflare"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/posts\/5578","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/comments?post=5578"}],"version-history":[{"count":8,"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/posts\/5578\/revisions"}],"predecessor-version":[{"id":5610,"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/posts\/5578\/revisions\/5610"}],"wp:attachment":[{"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/media?parent=5578"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/categories?post=5578"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dmesg.app\/wp-json\/wp\/v2\/tags?post=5578"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}